exploitDog

GHSA-vwc8-7rg6-jffc

Опубликовано: 19 июл. 2024

Источник: github

Github: Не прошло ревью

CVSS4: 6

Описание

Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate privileges to SuperAdmin via a crafted PUT HTTP request, potentially leading to unauthorized access to sensitive system functions and data.

Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate privileges to SuperAdmin via a crafted PUT HTTP request, potentially leading to unauthorized access to sensitive system functions and data.

Ссылки

EPSS

Процентиль: 16%

0.00051

Низкий

6 Medium

CVSS4

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2024-6908

nvd

больше 1 года назад

Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate privileges to SuperAdmin via a crafted PUT HTTP request, potentially leading to unauthorized access to sensitive system functions and data.

CVE-2024-6908

debian

больше 1 года назад

Improper privilege management in Yugabyte Platform allows authenticate ...

EPSS

Процентиль: 16%

0.00051

Низкий

6 Medium

CVSS4

CVE ID

Дефекты

CWE-269