CVE-2023-41264 | Netwrix Usercube prior 6.0.215 API improper authentication

A vulnerability, which was classified as critical, has been found in Netwrix Usercube. Affected by this issue is some unknown functionality of the component API. The manipulation of the argument restSettings.AuthorizedClientId/restSettings.AuthorizedSecret leads to improper authentication.

This vulnerability is handled as CVE-2023-41264. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-41264 | Netwrix Usercube prior 6.0.215 API improper authentication