Lucene search
Https://gitlab.com/gitlab-org/security-products/gemnasium-dbGITLAB-960735B5A7B15BDF448D4A55222794C0HistoryJul 17, 2023 - 12:00 a.m.
Authorization Bypass Through User-Controlled Key
2023-07-1700:00:00
https://gitlab.com/gitlab-org/security-products/gemnasium-db
gitlab.com
5
github repository
authorization bypass
user-controlled key
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
EPSS
0.001
Percentile
23.8%
Authorization Bypass Through User-Controlled Key in GitHub repository alextselegidis/easyappointments prior to 1.5.0.
Affected configurations
Node
packagisteasyappointmentsRange≤1.4.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| packagist | easyappointments | * | cpe:2.3:a:packagist:easyappointments:*:*:*:*:*:*:*:* |
Related
huntr
huntr
IDOR can make attackers add or close others' unavaiable
2023-06-05 08:52:29
cve
cve
CVE-2023-3700
2023-07-17 07:15:09
nvd
nvd
CVE-2023-3700
2023-07-17 07:15:09
osv
osv
Easy!Appointments Improper Access Control vulnerability
2023-07-17 09:30:23
CVE-2023-3700
2023-07-17 07:15:09
prion
prion
Authorization
2023-07-17 07:15:00
github
github
Easy!Appointments Improper Access Control vulnerability
2023-07-17 09:30:23
cvelist
cvelist
veracode
veracode
Improper Access Control
2023-07-19 06:26:53
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
EPSS
0.001
Percentile
23.8%
Related for GITLAB-960735B5A7B15BDF448D4A55222794C0