Описание
Authorization Bypass Through User-Controlled Key vulnerability in Apache Fineract.
This issue affects Apache Fineract: through 1.11.0. The issue is fixed in version 1.12.1.
Users are encouraged to upgrade to version 1.13.0, the latest release.
Ссылки
- Mailing ListVendor Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.12.1 (исключая)
cpe:2.3:a:apache:fineract:*:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.0006
Низкий
8.1 High
CVSS3
Дефекты
CWE-639
Связанные уязвимости
CVSS3: 8.1
github
около 2 месяцев назад
Authorization Bypass Through User-Controlled Key vulnerability in Apache Fineract. This issue affects Apache Fineract: through 1.11.0. The issue is fixed in version 1.12.1. Users are encouraged to upgrade to version 1.13.0, the latest release.
EPSS
Процентиль: 19%
0.0006
Низкий
8.1 High
CVSS3
Дефекты
CWE-639