How severe is CVE-2023-27095?

CVE-2023-27095 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2023-27095

Name: hippo4j
Author: opengoofy

6.5MEDIUM

Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker toescalate privileges via the AddUser method of the UserController function in Tenant Management module.

게시됨: 3/16/2023업데이트됨: 2/26/2025

설명

Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker toescalate privileges via the AddUser method of the UserController function in Tenant Management module.

AI 분석AI 기반

영향받는 제품

opengoofyhippo4j

참조

https://github.com/opengoofy/hippo4j/issues/1061
ExploitIssue TrackingThird Party Advisory
https://github.com/opengoofy/hippo4j/issues/1061
ExploitIssue TrackingThird Party Advisory