cvedb.io
CVE-2023-27107
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2023-04-26T22:15:09.443 · Last modified 2026-06-17T05:44:23.217

Summary

Incorrect access control in the runReport function of MyQ Solution Print Server before 8.2 Patch 32 and Central Server before 8.2 Patch 22 allows users who do not have appropriate access rights to generate internal reports using a direct URL.

Affected products

myq-solution — central_server

Does this affect you?

Add your gear to cvedb and we'll alert you only when myq-solution ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.