exploitDog

GHSA-p353-cp93-hvp7

Опубликовано: 04 дек. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Incorrect authorization in permission validation component in Devolutions Server 2024.3.6.0 and earlier allows an authenticated user to access some reporting endpoints.

Incorrect authorization in permission validation component in Devolutions Server 2024.3.6.0 and earlier allows an authenticated user to access some reporting endpoints.

Ссылки

EPSS

Процентиль: 42%

0.00197

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2024-12148

CVSS3: 4.3

nvd

около 1 года назад

Incorrect authorization in permission validation component in Devolutions Server 2024.3.6.0 and earlier allows an authenticated user to access some reporting endpoints.

EPSS

Процентиль: 42%

0.00197

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863