GHSA-qv9c-rwmq-rgm5

Опубликовано: 03 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 1.8

Описание

Incorrect Authorization vulnerability in OpenText™ GroupWise allows Exploiting Incorrectly Configured Access Control Security Levels.

The vulnerability could allow unauthorized access to calendar items marked private.

This issue affects GroupWise versions 7 through 17.5, 23.4, 24.1, 24.2, 24.3, 24.4.

Incorrect Authorization vulnerability in OpenText™ GroupWise allows Exploiting Incorrectly Configured Access Control Security Levels.

The vulnerability could allow unauthorized access to calendar items marked private.

This issue affects GroupWise versions 7 through 17.5, 23.4, 24.1, 24.2, 24.3, 24.4.

Ссылки

EPSS

Процентиль: 5%

0.00022

Низкий

1.8 Low

CVSS4

CVE ID

CVE-2025-0885

Дефекты

CWE-863

Связанные уязвимости

CVE-2025-0885

nvd

7 месяцев назад

Incorrect Authorization vulnerability in OpenText™ GroupWise allows Exploiting Incorrectly Configured Access Control Security Levels. The vulnerability could allow unauthorized access to calendar items marked private. This issue affects GroupWise versions 7 through 17.5, 23.4, 24.1, 24.2, 24.3, 24.4.

EPSS

Процентиль: 5%

0.00022

Низкий

1.8 Low

CVSS4

CVE ID

CVE-2025-0885

Дефекты

CWE-863