Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:29920
HistoryApr 07, 2021 - 4:20 a.m.

Privilege Escalation

2021-04-0704:20:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
privilege escalation
vulnerability
workflow
issue comment
pull request
software

EPSS

0.002

Percentile

64.9%

JSON

projen is vulnerable to privilege escalation. The vulnerability exists due to workflow being able to be triggered the issue_comment on the pull request.

Related

osv 3
cvelist 1
prion 1
github 1
nvd 1
cve 1
osv
osv
Rebuild-bot workflow may allow unauthorised repository modifications
2021-04-06 18:36:40
CVE-2021-21423
2021-04-06 19:15:14
PYSEC-2021-111
2021-04-06 19:15:00
cvelist
cvelist
CVE-2021-21423 Exposure of Version-Control Repository to an Unauthorized Control Sphere in projen
2021-04-06 18:35:14
prion
prion
Design/Logic Flaw
2021-04-06 19:15:00
github
github
Rebuild-bot workflow may allow unauthorised repository modifications
2021-04-06 18:36:40
nvd
nvd
CVE-2021-21423
2021-04-06 19:15:14
cve
cve
CVE-2021-21423
2021-04-06 19:15:14

EPSS

0.002

Percentile

64.9%

JSON
Related for VERACODE:29920
osv3cvelist1prion1github1nvd1cve1