Описание
An Insecure Direct Object Reference in Google Cloud's Looker allowed metadata exposure across authenticated Looker users sharing the same LookML model.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:google:looker:23.18:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:23.20:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.0:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.2:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.4:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.6:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.8:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.10:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.12:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.14:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.16:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.18:*:*:*:*:*:*:*
cpe:2.3:a:google:looker:24.20:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00067
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-639
CWE-639
Связанные уязвимости
CVSS3: 6.5
github
больше 1 года назад
An Insecure Direct Object Reference in Google Cloud's Looker allowed metadata exposure across authenticated Looker users sharing the same LookML model.
EPSS
Процентиль: 21%
0.00067
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-639
CWE-639