exploitDog

GHSA-pwwr-37c5-wrqp

Опубликовано: 20 июл. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.9

Описание

Wyse Management Suite versions prior to 4.0 contain an improper authorization vulnerability. An authenticated malicious user with privileged access can push policies to unauthorized tenant group.

Wyse Management Suite versions prior to 4.0 contain an improper authorization vulnerability. An authenticated malicious user with privileged access can push policies to unauthorized tenant group.

Ссылки

EPSS

Процентиль: 23%

0.00077

Низкий

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-285

CWE-863

Связанные уязвимости

CVE-2023-32482

CVSS3: 4.9

nvd

больше 2 лет назад

Wyse Management Suite versions prior to 4.0 contain an improper authorization vulnerability. An authenticated malicious user with privileged access can push policies to unauthorized tenant group.

EPSS

Процентиль: 23%

0.00077

Низкий

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-285

CWE-863