Описание
plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate their privileges up to the highest level.
A flaw was found in Plone in versions 5.2.0 through 5.2.1. Users with a certain privilege level can escalate their privileges up to the highest privilege level when the site is using plone.restapi. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | conga | Out of support scope |
Показывать по
10
Дополнительная информация
Статус:
Important
Дефект:
CWE-284
https://bugzilla.redhat.com/show_bug.cgi?id=1798200plone: privilege escalation in plone.restapi
8.8 High
CVSS3
Связанные уязвимости
CVSS3: 8.8
nvd
около 6 лет назад
plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate their privileges up to the highest level.
8.8 High
CVSS3