CVE-2023-4102

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 3, 2023

Updated: Oct 10, 2023

CWE ID 209

CWE ID 210

Summary

CVE-2023-4102 is a vulnerability affecting the QSige login Single Sign-On (SSO) system. The issue lies in the lack of access control mechanism to authenticate user requests for resources, permitting unauthorized access once a user is logged into the application. This flaw could potentially enable attackers to gain unauthorized access to sensitive data or functionality within the affected system. It is essential for organizations using QSige login SSO to implement appropriate access control measures to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sbM-zJ
https://www.cve.org/CVERecord?id=CVE-2023-4102
https://nvd.nist.gov/vuln/detail/CVE-2023-4102

Back to Vulnerability Database

CVE-2023-4102

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations