exploitDog

GHSA-9jwm-2cwm-2g9m

Опубликовано: 11 окт. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Incorrect access control in the component app/src/server.js of Mirotalk before commit 9de226 allows unauthenticated attackers without presenter privileges to arbitrarily eject users from a meeting.

Incorrect access control in the component app/src/server.js of Mirotalk before commit 9de226 allows unauthenticated attackers without presenter privileges to arbitrarily eject users from a meeting.

Ссылки

EPSS

Процентиль: 34%

0.00135

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-732

Связанные уязвимости

CVE-2024-44729

CVSS3: 7.5

nvd

больше 1 года назад

Incorrect access control in the component app/src/server.js of Mirotalk before commit 9de226 allows unauthenticated attackers without presenter privileges to arbitrarily eject users from a meeting.

EPSS

Процентиль: 34%

0.00135

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-732