CVE-2023-41908 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 21%

Affected Products (NVD)

Vendor	Product	Version
cerebrate-project	cerebrate	𝑥 < 1.15

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-862 - Missing Authorization
The software does not perform an authorization check when an actor attempts to access a resource or perform an action.

References

https://github.com/cerebrate-project/cerebrate/commit/9be81055651649658243b5aa274b175064bfc6db

https://github.com/cerebrate-project/cerebrate/compare/v1.14...v1.15

https://github.com/cerebrate-project/cerebrate/commit/9be81055651649658243b5aa274b175064bfc6db

https://github.com/cerebrate-project/cerebrate/compare/v1.14...v1.15