CVE-2023-35998

CVE-2023-35998

A missing authorization check in multiple SOAP endpoints of the Insider Threat Management Server enables an attacker on an adjacent network to read and write unauthorized objects. Successful exploitation requires an attacker to first obtain a valid agent authentication token. All versions before 7.14.3 are affected.

Source: CVE-2023-35998

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다