Описание
A privilege escalation vulnerability was discovered when Single Sign On (SSO) is enabled that could allow an attacker to intercept a valid, authenticated LXCA user’s XCC session if they can convince the user to click on a specially crafted URL.
EPSS
Процентиль: 34%
0.00138
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-319
Связанные уязвимости
CVSS3: 6.8
github
больше 1 года назад
A privilege escalation vulnerability was discovered when Single Sign On (SSO) is enabled that could allow an attacker to intercept a valid, authenticated LXCA user’s XCC session if they can convince the user to click on a specially crafted URL.
EPSS
Процентиль: 34%
0.00138
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-319