Описание
A security defect was identified in Foundry workspace-server that enabled a user to bypass an authorization check and view settings related to 'Developer Mode'. This enabled users with insufficient privilege the ability to view and interact with Developer Mode settings in a limited capacity. A fix was deployed with workspace-server 7.7.0.
Уязвимые конфигурации
Конфигурация 1Версия до 7.7.0 (исключая)
cpe:2.3:a:palantir:foundry_workspace-server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00066
Низкий
4.3 Medium
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-602
CWE-863
Связанные уязвимости
CVSS3: 4.3
github
больше 2 лет назад
A security defect was identified in Foundry workspace-server that enabled a user to bypass an authorization check and view settings related to 'Developer Mode'. This enabled users with insufficient privilege the ability to view and interact with Developer Mode settings in a limited capacity. A fix was deployed with workspace-server 7.7.0.
EPSS
Процентиль: 21%
0.00066
Низкий
4.3 Medium
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-602
CWE-863