CVE-2023-49339

Published February 13th, 2024

View on NVD ↗

CVSS v3

6.5

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

Ellucian Banner 9.17 allows Insecure Direct Object Reference (IDOR) via a modified bannerId to the /StudentSelfService/ssb/studentCard/retrieveData endpoint.

3zizme/CVE-2023-49339

Critical Security Vulnerability in Ellucian Banner System

GitHub