Количество 4
Количество 4
CVE-2010-5142
chef-server-api/app/controllers/users.rb in the API in Chef before 0.9.0 does not require administrative privileges for the create, destroy, and update methods, which allows remote authenticated users to manage user accounts via requests to the /users URI.
CVE-2010-5142
chef-server-api/app/controllers/users.rb in the API in Chef before 0.9.0 does not require administrative privileges for the create, destroy, and update methods, which allows remote authenticated users to manage user accounts via requests to the /users URI.
CVE-2010-5142
chef-server-api/app/controllers/users.rb in the API in Chef before 0.9 ...
GHSA-f68m-q26r-64f6
Chef Improper Access Control vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2010-5142 chef-server-api/app/controllers/users.rb in the API in Chef before 0.9.0 does not require administrative privileges for the create, destroy, and update methods, which allows remote authenticated users to manage user accounts via requests to the /users URI. | CVSS2: 6.5 | 0% Низкий | больше 13 лет назад |
 | CVE-2010-5142 chef-server-api/app/controllers/users.rb in the API in Chef before 0.9.0 does not require administrative privileges for the create, destroy, and update methods, which allows remote authenticated users to manage user accounts via requests to the /users URI. | CVSS2: 6.5 | 0% Низкий | больше 13 лет назад |
| CVE-2010-5142 chef-server-api/app/controllers/users.rb in the API in Chef before 0.9 ... | CVSS2: 6.5 | 0% Низкий | больше 13 лет назад |
| GHSA-f68m-q26r-64f6 Chef Improper Access Control vulnerability | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу