Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-23951

Ability to enumerate the Oracle LDAP attributes for the current user by modifying the query used by the application

Published

2023-01-26T21:18:15.460

Last Modified

2025-04-02T15:15:54.043

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.1 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-79
  • Type: Secondary
    CWE-79
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application broadcom symantec_identity_governance_and_administration 14.3 Yes
Application broadcom symantec_identity_governance_and_administration 14.4.1 Yes
Application broadcom symantec_identity_governance_and_administration 14.4.2 Yes
Application broadcom symantec_identity_manager 14.3 Yes
Application broadcom symantec_identity_manager 14.4 Yes
References