exploitDog

GHSA-23pm-fv72-xcr5

Опубликовано: 17 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Authorization Bypass Through User-Controlled Key vulnerability in Scott Taylor Avatar allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Avatar: from n/a through 0.1.4.

Authorization Bypass Through User-Controlled Key vulnerability in Scott Taylor Avatar allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Avatar: from n/a through 0.1.4.

Ссылки

EPSS

Процентиль: 11%

0.00039

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-639

Связанные уязвимости

CVE-2025-39434

CVSS3: 4.3

nvd

4 месяца назад

Authorization Bypass Through User-Controlled Key vulnerability in Scott Taylor Avatar allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Avatar: from n/a through 0.1.4.

EPSS

Процентиль: 11%

0.00039

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-639