Lucene search
HistoryJul 17, 2023 - 7:15 a.m.
CVE-2023-3700
github
easyappointments
authorization bypass
cve-2023-3700
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
EPSS
0.001
Percentile
23.8%
Authorization Bypass Through User-Controlled Key in GitHub repository alextselegidis/easyappointments prior to 1.5.0.
Affected configurations
Node
easyappointmentseasyappointmentsRange<1.5.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| easyappointments | easyappointments | * | cpe:2.3:a:easyappointments:easyappointments:*:*:*:*:*:*:*:* |
Related
huntr
huntr
IDOR can make attackers add or close others' unavaiable
2023-06-05 08:52:29
cve
cve
CVE-2023-3700
2023-07-17 07:15:09
osv
osv
Easy!Appointments Improper Access Control vulnerability
2023-07-17 09:30:23
CVE-2023-3700
2023-07-17 07:15:09
prion
prion
Authorization
2023-07-17 07:15:00
github
github
Easy!Appointments Improper Access Control vulnerability
2023-07-17 09:30:23
gitlab
gitlab
Authorization Bypass Through User-Controlled Key
2023-07-17 00:00:00
cvelist
cvelist
veracode
veracode
Improper Access Control
2023-07-19 06:26:53
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
EPSS
0.001
Percentile
23.8%
Related for NVD:CVE-2023-3700