![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
Rewterz Threat Advisory – Multiple Node.js Vulnerabilities
June 26, 2023![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
Rewterz Threat Advisory – ICS: Multiple Advantech R-SeeNet Vulnerabilities
June 26, 2023![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
Rewterz Threat Advisory – Multiple Node.js Vulnerabilities
June 26, 2023![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
Rewterz Threat Advisory – ICS: Multiple Advantech R-SeeNet Vulnerabilities
June 26, 2023Severity
High
Analysis Summary
CVE-2023-31469
Apache StreamPipes could allow a remote authenticated attacker to gain elevated privileges on the system, caused by the failure to properly restrict a REST interface to admin-only access. An attacker could exploit this vulnerability to gain elevated privileges on the system.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2023-31469
Affected Vendors
Apache
Affected Products
- Apache StreamPipes 0.91.0
- Apache StreamPipes 0.69.0
Remediation
Upgrade to the latest version of StreamPipes, available from the Apache Web site.