GHSA-467v-w526-45hgMediumCVSS 6.5
Incorrect access control in the /api/License/deactivateOffline endpoint of CAXPerts...
🔗 CVE IDs covered (1)
📋 Description
Incorrect access control in the /api/License/deactivateOffline endpoint of CAXPerts UniversalPlantViewer WebServices Server v2.7.6 allows authenticated attackers with low-level privileges to cause a Denial of Service (DoS) via removing the license from the webserver.