An issue exists in iPortalis iCS 7.1.13.0. An attacker can gain privileges by intercepting a request and changing UserRoleKey=COMPANY_ADMIN to UserRoleKey=DOMAIN_ADMIN (to achieve Domain Administrator access).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
iportalis iportalis control portal 7.1.13.0 |