In SapphireIMS 4097_1, a guest user can create a local administrator account on any system that has SapphireIMS installed, because of an Insecure Direct Object Reference (IDOR) in the local user creation function.
CVSS 3.0 Base Score
CWE-732: Incorrect Permission Assignment for Critical Resource
- 14 Sept, 2017 - Informed vendor; No response
- 15 Sept, 2017 - Informed CERT/CC
- 26 Sept, 2017 - First follow up; No response
- 30 Oct, 2017 - Second follow up; No response
- 06 Nov, 2017 - Assigned CVE