exploitDog

GHSA-9jxm-cw29-vpj8

Опубликовано: 08 фев. 2022

Источник: github

Github: Не прошло ревью

Описание

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header.

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header.

Ссылки

EPSS

Процентиль: 95%

0.15862

Средний

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2022-22831

CVSS3: 9.8

nvd

около 4 лет назад

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header.

EPSS

Процентиль: 95%

0.15862

Средний

CVE ID

Дефекты

CWE-287