One Article Review
| Source |  CVE Liste |
|---|---|
| Identifiant | 8335717 |
| Date de publication | 2023-05-11 17:15:09 (vue: 2023-05-11 19:07:02) |
| Titre | CVE-2023-32075 |
| Texte | The Customer Management Framework (CMF) for Pimcore adds functionality for customer data management. In `pimcore/customer-management-framework-bundle` prior to version 3.3.9, business logic errors are possible in the `Conditions` tab since the counter can be a negative number. This vulnerability is capable of the unlogic in the counter value in the Conditions tab. Users should update to version 3.3.9 to receive a patch or, as a workaround, or apply the patch manually.
The Customer Management Framework (CMF) for Pimcore adds functionality for customer data management. In `pimcore/customer-management-framework-bundle` prior to version 3.3.9, business logic errors are possible in the `Conditions` tab since the counter can be a negative number. This vulnerability is capable of the unlogic in the counter value in the Conditions tab. Users should update to version 3.3.9 to receive a patch or, as a workaround, or apply the patch manually. |
| Notes | |
| Envoyé | Oui |
| Condensat | 2023 32075 `conditions` `pimcore/customer adds apply are bundle` business can capable cmf conditions counter customer cve data errors framework functionality logic management manually negative number patch pimcore possible prior receive should since tab unlogic update users value version vulnerability workaround |
| Tags | Vulnerability |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.