How severe is CVE-2023-3288?

CVE-2023-3288 has a CVSS v3 score of 8.5 (HIGH).

CVE-2023-3288

Name: easyappointments
Author: easyappointments

8.5HIGH

A BOLA vulnerability in POST /providers allows a low privileged user to create a privileged user (provider) in the system. This results in privilege escalation.

Опубликовано: 7/9/2024Обновлено: 11/21/2024

Описание

A BOLA vulnerability in POST /providers allows a low privileged user to create a privileged user (provider) in the system. This results in privilege escalation.

ИИ-АнализНа базе ИИ

Затронутые продукты

easyappointmentseasyappointments

Ссылки

https://github.com/alextselegidis/easyappointments
Product
https://github.com/alextselegidis/easyappointments
Product