Volerion logoVolerion
Volerion logoVolerion

Mavenir SCE Application Provisioning Portal Authorization Bypass Vulnerability Allowing Unauthorized Administrative Actions

Vulnerability

A vulnerability allowing authorization bypass has been identified in the Mavenir SCE Application Provisioning Portal, specifically in version PORTAL-LBS-R_1_0_24_0. This vulnerability enables an authenticated 'guest' user to circumvent client-side access controls and execute unauthorized administrative tasks, such as using the 'add user' feature.

Impact

Exploitation of this vulnerability could lead to unauthorized administrative actions being performed by 'guest' users, potentially allowing them to manipulate user accounts or access sensitive administrative features.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
5.0
exploitability
5.2
remediation
0.0
relevance
0.0
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.