CVE-2023-30486
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Summary
CVE-2023-30486 is a Missing Authorization vulnerability affecting HashThemes Square, a software solution from version n/a through 2.0.0. This issue arises due to incorrectly configured access control security levels, providing an opportunity for attackers to exploit the system without proper authorization. The vulnerability could potentially allow unauthorized data access or modification, posing a significant risk to affected organizations. Users are advised to update to the latest version or implement appropriate access control measures as soon as possible to mitigate the threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.