Описание
An improper access control was identified in the Identity Security Cloud (ISC) message server API that allowed an authenticated user to exfiltrate job processing metadata (opaque messageIDs, work queue depth and counts) for other tenants.
EPSS
Процентиль: 19%
0.0006
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-1284
Связанные уязвимости
CVSS3: 6.5
github
больше 1 года назад
An improper access control was identified in the Identity Security Cloud (ISC) message server API that allowed an authenticated user to exfiltrate job processing metadata (opaque messageIDs, work queue depth and counts) for other tenants.
EPSS
Процентиль: 19%
0.0006
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-1284