CRITICAL🇵🇱 Wersja polska

CVE-2023-3287

CVSS 9.9v3.1pub. 2024-07-09upd. 2024-11-21

A BOLA vulnerability in POST /admins allows a low privileged user to create a high privileged user (admin) in the system. This results in privilege escalation.

🤖 AI Analysis
How it works

An attacker with any account in the Easy!Appointments system can send a POST request to the /admins endpoint without proper authorization verification. Lack of object-level authorization control (CWE-639) causes the application to accept the request and create a new user with administrator privileges. In this way, a low-privileged user gains full control over the system.

Impact

An attacker can escalate their privileges to administrator level, granting them full access to data, configuration, and management of all users and appointments in the system.

Mitigation & patch

Apply patches available from the vendor according to references (https://github.com/alextselegidis/easyappointments)

Who is affected

Easy!Appointments application (easyappointments/easyappointments) — versions indicated in the vendor references

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Easyappointments

    APP
    Easyappointments
    < 1.5.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPE
CWE
References

Related vulnerabilities

CVE-2024-57602CRITICAL9.8PL ✓ten sam produkt

EasyAppointments v.1.5.0 — privilege escalation przez index.php

CVE-2023-38051CRITICAL9.9PL ✓ten sam produkt

BOLA w Easy!Appointments — nieuprawniony dostęp do danych sekretarek

CVE-2023-38049CRITICAL9.9PL ✓ten sam produkt

BOLA w EasyAppointments — nieuprawniony dostęp do wizyt innych użytkowników

CVE-2023-38048CRITICAL9.9PL ✓ten sam produkt

BOLA w Easy!Appointments — nieautoryzowany dostęp do kont dostawców

CVE-2023-38050CRITICAL9.1PL ✓ten sam produkt

BOLA w EasyAppointments — nieautoryzowany dostęp do webhooków innych użytkowników