Description
An issue found in OpenGoofy Hippo4j v.1.4.3 allows attackers to escalate privileges via the ThreadPoolController of the tenant Management module.
Remediation
References
https://github.com/opengoofy/hippo4j/issues/1059
Related Vulnerabilities
CVE-2023-46998 Vulnerability in maven package org.webjars.npm:bootbox.js
CVE-2020-11971 Vulnerability in maven package org.apache.camel:camel-management
CVE-2012-6153 Vulnerability in maven package commons-httpclient:commons-httpclient
CVE-2017-4992 Vulnerability in maven package org.cloudfoundry.identity:cloudfoundry-identity-uaa
CVE-2023-50728 Vulnerability in npm package @octokit/webhooks