Описание
In OMERO 5.3.3 or earlier a user could create an OriginalFile and adjust its path such that it now points to another user's file on the underlying filesystem, then manipulate the user's data.
Ссылки
- MitigationVendor Advisory
- MitigationVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.3.3 (включая)
cpe:2.3:a:openmicroscopy:omero:*:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00457
Низкий
8.3 High
CVSS3
6.5 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 8.3
github
больше 3 лет назад
In OMERO 5.3.3 or earlier a user could create an OriginalFile and adjust its path such that it now points to another user's file on the underlying filesystem, then manipulate the user's data.
EPSS
Процентиль: 63%
0.00457
Низкий
8.3 High
CVSS3
6.5 Medium
CVSS2
Дефекты
NVD-CWE-noinfo