exploitDog

GHSA-p2jf-cw3h-mcrc

Опубликовано: 01 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.3

Описание

A valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call.

A valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call.

Ссылки

EPSS

Процентиль: 47%

0.0024

Низкий

8.3 High

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2023-0683

CVSS3: 8.3

nvd

почти 3 года назад

A valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call.

EPSS

Процентиль: 47%

0.0024

Низкий

8.3 High

CVSS3

CVE ID

Дефекты

CWE-20