exploitDog

GHSA-hmf8-53x4-w3jj

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator rights (i.e., the BankAdmin role) via modified SaveUser data.

A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator rights (i.e., the BankAdmin role) via modified SaveUser data.

Ссылки

EPSS

Процентиль: 95%

0.1585

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2020-14945

CVSS3: 8.8

nvd

больше 5 лет назад

A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator rights (i.e., the BankAdmin role) via modified SaveUser data.

EPSS

Процентиль: 95%

0.1585

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-269