VDE Products Authorization Bypass Vulnerability Allowing Unauthorized Account Deletion

Vulnerability

A vulnerability exists in certain VDE products due to inadequate authorization checks when deleting user accounts. This flaw enables an authenticated, low-privileged remote user to delete other users' accounts, including those with higher privileges.

Impact

Exploitation of this vulnerability allows for unauthorized deletion of user accounts, potentially including accounts with elevated privileges.

Added: May 26, 2026, 5:16 PM

Updated: May 26, 2026, 5:16 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

VDE Products Authorization Bypass Vulnerability Allowing Unauthorized Account Deletion

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating