exploitDog

GHSA-xhr6-7rpm-rmv3

Опубликовано: 26 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

An issue was discovered in Ruoyi 4.8.1 allowing attackers to gain escalated privileges due to the owning department having higher rights than the active user.

An issue was discovered in Ruoyi 4.8.1 allowing attackers to gain escalated privileges due to the owning department having higher rights than the active user.

Ссылки

EPSS

Процентиль: 18%

0.00057

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2025-56396

CVSS3: 8.8

nvd

2 месяца назад

An issue was discovered in Ruoyi 4.8.1 allowing attackers to gain escalated privileges due to the owning department having higher rights than the active user.

EPSS

Процентиль: 18%

0.00057

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-284