exploitDog

GHSA-fhxh-jfcp-fmv9

Опубликовано: 16 авг. 2024

Источник: github

Github: Не прошло ревью

CVSS4: 8.6

CVSS3: 6.5

Описание

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9.

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9.

Ссылки

EPSS

Процентиль: 30%

0.00112

Низкий

8.6 High

CVSS4

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-639

Связанные уязвимости

CVE-2024-42463

CVSS3: 6.5

nvd

больше 1 года назад

Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue affects upKeeper Manager: through 5.1.9.

EPSS

Процентиль: 30%

0.00112

Низкий

8.6 High

CVSS4

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-639