Количество 2
Количество 2
CVE-2022-32170
больше 3 лет назад
The “Bytebase” application does not restrict low privilege user to access admin “projects“ for which an unauthorized user can view the “projects“ created by “Admin” and the affected endpoint is “/api/project?user=${userId}”.
CVSS3: 4.3
EPSS: Низкий
GHSA-9mmc-27gw-w6mq
больше 3 лет назад
Bytebase allows low-privilege users to view admin projects
CVSS3: 4.3
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-32170 The “Bytebase” application does not restrict low privilege user to access admin “projects“ for which an unauthorized user can view the “projects“ created by “Admin” and the affected endpoint is “/api/project?user=${userId}”. | CVSS3: 4.3 | 0% Низкий | больше 3 лет назад |
| GHSA-9mmc-27gw-w6mq Bytebase allows low-privilege users to view admin projects | CVSS3: 4.3 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20