CVE-2023-41953Missing Authorization in Profilepress

CWE-862Missing Authorization3 documents3 sources
Severity
5.3MEDIUMNVD
EPSS
0.3%
top 43.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
Properfraction ProfilepressProfilepress Membership Team ProfilepressMsrc Microsoft Visual Studio 2017 Version 15.9+4 more
Timeline
PublishedDec 9

Description

Missing Authorization vulnerability in ProfilePress Membership Team ProfilePress.This issue affects ProfilePress: from n/a through 4.13.1.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages7 packages

🔴Vulnerability Details

1
GHSA
GHSA-g82v-73f7-4w62: Missing Authorization vulnerability in ProfilePress Membership Team ProfilePress2024-12-09

📋Vendor Advisories

1
Microsoft
GitHub: CVE-2022-41953 Git GUI Clone Remote Code Execution Vulnerability2023-02-14