CVE-2023-4198

Published: Nov 1, 2023
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-4198" target="_blank" rel="noopener"> CVE-2023-4198
GHSA: <a href="https://github.com/advisories/GHSA-48v2-596x-4jr9" target="_blank" rel="noopener"> GHSA-48v2-596x-4jr9
Severity: Medium
Exploit:

Improper Access Control in Dolibarr ERP CRM <= v17.0.3 allows an unauthorized authenticated user to read a database table containing customer data

CVSS v3:

CWEs:

Software	From	Fixed in
dolibarr / dolibarr	-	18.0.0
dolibarr / dolibarr_erp/crm	-	17.0.3.x