Описание
An unauthenticated Broken Function Level Authorization (BFLA) vulnerability in Newgen OmniDocs v11.0 allows attackers to obtain sensitive information and execute a full account takeover via a crafted API request.
Ссылки
- ExploitThird Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:newgensoft:omnidocs:11.0:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.0004
Низкий
8.2 High
CVSS3
Дефекты
CWE-862
Связанные уязвимости
CVSS3: 8.2
github
около 2 месяцев назад
An unauthenticated Broken Function Level Authorization (BFLA) vulnerability in Newgen OmniDocs v11.0 allows attackers to obtain sensitive information and execute a full account takeover via a crafted API request.
EPSS
Процентиль: 12%
0.0004
Низкий
8.2 High
CVSS3
Дефекты
CWE-862