How severe is CVE-2023-27095?

CVE-2023-27095 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2023-27095

Name: hippo4j
Author: opengoofy

6.5MEDIUM

Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker toescalate privileges via the AddUser method of the UserController function in Tenant Management module.

Veröffentlicht: 3/16/2023Aktualisiert: 2/26/2025

Beschreibung

Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker toescalate privileges via the AddUser method of the UserController function in Tenant Management module.

KI-AnalyseKI-gestützt

Betroffene Produkte

opengoofyhippo4j

Referenzen

https://github.com/opengoofy/hippo4j/issues/1061
ExploitIssue TrackingThird Party Advisory
https://github.com/opengoofy/hippo4j/issues/1061
ExploitIssue TrackingThird Party Advisory