exploitDog

GHSA-m4g6-4f6c-9h4c

Опубликовано: 29 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

OX App Suite before backend 7.10.6-rev37 allows authenticated users to bypass access controls (for reading contacts) via a move to their own address book.

OX App Suite before backend 7.10.6-rev37 allows authenticated users to bypass access controls (for reading contacts) via a move to their own address book.

Ссылки

EPSS

Процентиль: 13%

0.00042

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2023-24600

CVSS3: 4.3

nvd

больше 2 лет назад

OX App Suite before backend 7.10.6-rev37 allows authenticated users to bypass access controls (for reading contacts) via a move to their own address book.

EPSS

Процентиль: 13%

0.00042

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863