Vulnerabilities (CVE)

Filtered by vendor Status Subscribe
Filtered by product Powerbpm
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-25780 1 Status 1 Powerbpm 2024-11-21 N/A 5.7 MEDIUM
It is identified a vulnerability of insufficient authentication in an important specific function of Status PowerBPM. A LAN attacker with normal user privilege can exploit this vulnerability to modify substitute agent to arbitrary users, resulting in serious consequence.