exploitDog

GHSA-hc7m-j4w7-pv6w

Опубликовано: 28 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Incorrect access control in M2Soft CROWNIX Report & ERS affected v7.x to v7.4.3.599 and v8.x to v8.0.3.79 allows unauthorized attackers to obtain Administrator account access.

Incorrect access control in M2Soft CROWNIX Report & ERS affected v7.x to v7.4.3.599 and v8.x to v8.0.3.79 allows unauthorized attackers to obtain Administrator account access.

Ссылки

EPSS

Процентиль: 12%

0.0004

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2024-57336

CVSS3: 6.5

nvd

9 месяцев назад

Incorrect access control in M2Soft CROWNIX Report & ERS affected v7.x to v7.4.3.599 and v8.x to v8.0.3.79 allows unauthorized attackers to obtain Administrator account access.

EPSS

Процентиль: 12%

0.0004

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-284