exploitDog

GHSA-296f-cx2x-g274

Опубликовано: 26 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.1

Описание

SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct object references (IDOR) via the userService API model.

SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct object references (IDOR) via the userService API model.

Ссылки

EPSS

Процентиль: 31%

0.00116

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-639

Связанные уязвимости

CVE-2024-50693

CVSS3: 9.1

nvd

12 месяцев назад

SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct object references (IDOR) via the userService API model.

EPSS

Процентиль: 31%

0.00116

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-639