Due to missing authorization check, an attacker authenticated as a non-administrative user could call a remote-enabled function module. This could enable access to information normally restricted, resulting in low impact on confidentiality. There is no impact on integrity or availability.
2025-07-08T01:15:24.773
2025-07-08T16:18:14.207
Awaiting Analysis
CVSSv3.1: 4.3 (MEDIUM)
-