exploitDog

GHSA-8q2g-9f98-xxwf

Опубликовано: 14 мар. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.6

Описание

This allows attackers to use a maliciously formed API request to gain access to an API authorization level with elevated privileges. This applies to a small subset of PaperCut NG/MF API calls.

This allows attackers to use a maliciously formed API request to gain access to an API authorization level with elevated privileges. This applies to a small subset of PaperCut NG/MF API calls.

Ссылки

EPSS

Процентиль: 85%

0.02426

Низкий

8.6 High

CVSS3

CVE ID

Дефекты

CWE-200

CWE-250

Связанные уязвимости

CVE-2024-1222

CVSS3: 8.6

nvd

почти 2 года назад

This allows attackers to use a maliciously formed API request to gain access to an API authorization level with elevated privileges. This applies to a small subset of PaperCut NG/MF API calls.

EPSS

Процентиль: 85%

0.02426

Низкий

8.6 High

CVSS3

CVE ID

Дефекты

CWE-200

CWE-250