CVE-2023-27449
CVSS 3.1 Score 6.3 of 10 (medium)
Details
Published Dec 9, 2024
CWE ID 862
Summary
CVE-2023-27449 is a Missing Authorization vulnerability affecting the Total Poll Lite component of TotalSuite. It enables unauthorized access by exploiting incorrectly configured security levels. This issue impacts versions from n/a to 4.8.6, posing a potential risk for unauthorized users to gain unapproved access and manipulate data or functionality. Organizations using Total Poll Lite should promptly update to a secure version to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share