exploitDog

GHSA-4r7w-cvqp-58f8

Опубликовано: 05 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Permissions were not properly verified in the API on projects using version control in Git. This allowed projects to be modified by users with only ProjectView permissions.

Permissions were not properly verified in the API on projects using version control in Git. This allowed projects to be modified by users with only ProjectView permissions.

Ссылки

EPSS

Процентиль: 39%

0.00175

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2022-1502

CVSS3: 4.3

nvd

почти 4 года назад

Permissions were not properly verified in the API on projects using version control in Git. This allowed projects to be modified by users with only ProjectView permissions.

EPSS

Процентиль: 39%

0.00175

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863