This vulnerability involves missing authorization checks in the AtomChat product by Team AtomChat, specifically due to incorrectly configured access control security levels. It affects all versions up to 1.1.7. The CVSS 3.1 base score is 4.3, reflecting a network attack vector with low complexity, requiring low privileges, no user interaction, and resulting in a loss of integrity but no confidentiality or availability impact. No patch or remediation information is provided, and the product is not a cloud service, so remediation depends on vendor updates.

The vulnerability allows an attacker with low privileges to exploit missing authorization controls, potentially leading to unauthorized modifications or actions within the AtomChat application. There is no impact on confidentiality or availability reported. No known exploits are currently active in the wild.

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no patch or official fix information is provided, users should monitor vendor communications for updates. Until a fix is available, restrict access to trusted users and review access control configurations where possible to minimize risk.