exploitDog

GHSA-g934-4c2x-9pcq

Опубликовано: 05 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation.

Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation.

Ссылки

EPSS

Процентиль: 96%

0.24025

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2021-42192

CVSS3: 8.8

nvd

почти 4 года назад

Konga v0.14.9 is affected by an incorrect access control vulnerability where a specially crafted request can lead to privilege escalation.

EPSS

Процентиль: 96%

0.24025

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-863