exploitDog

CVE-2020-15949

Опубликовано: 05 нояб. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Immuta v2.8.2 is affected by one instance of insecure permissions that can lead to user account takeover.

Ссылки

https://labs.bishopfox.com/advisories
Exploit
Third Party Advisory
https://labs.bishopfox.com/advisories/immuta-version-2.8.2
Release Notes
Third Party Advisory
https://www.immuta.com/
Product
https://labs.bishopfox.com/advisories
Exploit
Third Party Advisory
https://labs.bishopfox.com/advisories/immuta-version-2.8.2
Release Notes
Third Party Advisory
https://www.immuta.com/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:immuta:immuta:2.8.2:*:*:*:*:*:*:*

EPSS

Процентиль: 41%

0.00186

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-m5wp-9jw2-r9vp

github

больше 3 лет назад

Immuta v2.8.2 is affected by one instance of insecure permissions that can lead to user account takeover.

EPSS

Процентиль: 41%

0.00186

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-287