exploitDog

GHSA-98v3-6phw-46hc

Опубликовано: 09 мар. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token.

An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token.

Ссылки

EPSS

Процентиль: 53%

0.00298

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-250

Связанные уязвимости

CVE-2023-50015

CVSS3: 8.8

nvd

почти 2 года назад

An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token.

EPSS

Процентиль: 53%

0.00298

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-250