CVE-2023-49339
6.5MEDIUMEllucian Banner 9.17 allows Insecure Direct Object Reference (IDOR) via a modified bannerId to the /StudentSelfService/ssb/studentCard/retrieveData endpoint.
Publicado: 2/13/2024Actualizado: 5/7/2025
Descripción
Ellucian Banner 9.17 allows Insecure Direct Object Reference (IDOR) via a modified bannerId to the /StudentSelfService/ssb/studentCard/retrieveData endpoint.
Análisis IAImpulsado por IA
Productos Afectados
ellucianbanner
Referencias
- https://github.com/3zizme/CVE-2023-49339/ExploitThird Party Advisory
- https://www.ellucian.com/solutions/ellucian-bannerProduct
- https://github.com/3zizme/CVE-2023-49339/ExploitThird Party Advisory
- https://www.ellucian.com/solutions/ellucian-bannerProduct