exploitDog

CVE-2023-22891

Опубликовано: 08 мар. 2023

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

There exists a privilege escalation vulnerability in SmartBear Zephyr Enterprise through 7.15.0 that could be exploited by authorized users to reset passwords for other accounts.

Ссылки

https://smartbear.com/security/cve/
Vendor Advisory
https://smartbear.com/security/cve/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:smartbear:zephyr_enterprise:*:*:*:*:*:*:*:*

Версия до 7.15 (включая)

EPSS

Процентиль: 39%

0.00172

Низкий

8.1 High

CVSS3

Дефекты

CWE-863

CWE-863

Связанные уязвимости

GHSA-v7xw-hr75-rm43

CVSS3: 8.1

github

почти 3 года назад

There exists a privilege escalation vulnerability in SmartBear Zephyr Enterprise through 7.15.0 that could be exploited by authorized users to reset passwords for other accounts.

EPSS

Процентиль: 39%

0.00172

Низкий

8.1 High

CVSS3

Дефекты

CWE-863

CWE-863