CVE-2023-42228

Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Incorrect Access Control. Low privileged users can edit their own ACL rules by sending a request to the "AclList/SaveAclRules" administrative function.

CVSS

No CVSS.

References

Link	Resource
https://gitlab.com/daniele_m/cve-list/-/blob/main/README.md	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:zucchetti:helpdeskadvanced:*:*:*:*:*:*:*:*

History

17 Apr 2025, 17:43

Type	Values Removed	Values Added
First Time		Zucchetti helpdeskadvanced Zucchetti
References	~~() https://gitlab.com/daniele_m/cve-list/-/blob/main/README.md -~~	() https://gitlab.com/daniele_m/cve-list/-/blob/main/README.md - Third Party Advisory
CPE		cpe:2.3:a:zucchetti:helpdeskadvanced::::::::

13 Jan 2025, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-01-13 22:15

Updated : 2025-04-17 17:43

NVD link : CVE-2023-42228

Mitre link : CVE-2023-42228

JSON object : View

Products Affected

zucchetti

helpdeskadvanced

CWE

No CWE.

JSON object

Attach tags to CVE-2023-42228

Attach tags to `CVE-2023-42228`