exploitDog

GHSA-55ph-7h5c-gfhx

Опубликовано: 29 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Marval MSM v14.19.0.12476 has an Improper Access Control vulnerability which allows a low privilege user to delete other users API Keys including high privilege and the Administrator users API Keys.

Marval MSM v14.19.0.12476 has an Improper Access Control vulnerability which allows a low privilege user to delete other users API Keys including high privilege and the Administrator users API Keys.

Ссылки

EPSS

Процентиль: 47%

0.00243

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2022-31884

CVSS3: 6.5

nvd

больше 3 лет назад

Marval MSM v14.19.0.12476 has an Improper Access Control vulnerability which allows a low privilege user to delete other users API Keys including high privilege and the Administrator users API Keys.

EPSS

Процентиль: 47%

0.00243

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-269