CVE-2023-27095 Information

Description

Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker toescalate privileges via the AddUser method of the UserController function in Tenant Management module.

Reference

https://github.com/opengoofy/hippo4j/issues/1061