CVE-2023-36531
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Dec 13, 2024
CWE ID 862
Summary
CVE-2023-36531 is a Missing Authorization vulnerability affecting LiquidPoll's Advanced Polls for Creators and Brands, versions n/a through 3.3.68. If access control security levels are incorrectly configured, an attacker can exploit this issue and gain unauthorized access. This weakness poses a significant risk to the security of the polling system. Users are encouraged to upgrade to a patched version as soon as possible to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share