Описание
Neo4j Cypher component mishandles IMMUTABLE privileges
The Cypher component in Neo4j between v.5.0.0 and v.5.19.0 mishandles IMMUTABLE.
Пакеты
Наименование
org.neo4j:neo4j-cypher
maven
Затронутые версииВерсия исправления
>= 5.0.0, < 5.19.0
5.19.0
Связанные уязвимости
CVSS3: 6.5
nvd
больше 1 года назад
The Cypher component in Neo4j 5.0.0 through 5.18 mishandles IMMUTABLE privileges in some situations where an attacker already has admin access.