Improper Access Control in GitHub repository admidio/admidio prior to 4.2.9.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

Attack Vector Network

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v2

Vendors Products
Admidio
  • Admidio

Configuration 1 [-]

cpe:2.3:a:admidio:admidio:*:*:*:*:*:*:*:*
References
Link Resource
https://github.com/admidio/admidio/commit/3b248b7d5e0e60a00ee2f9a6908d538d62a5837f Patch
https://huntr.dev/bounties/721fae61-3c8c-4e4b-8407-64321bc0ed17 Exploit Patch Third Party Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: @huntrdev

Published: 2023-06-23T00:00:00

Updated: 2023-06-23T00:00:00

Reserved: 2023-06-18T00:00:00

Link: CVE-2023-3304

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-06-23T13:15:10.663

Modified: 2023-06-28T15:21:27.977

Link: CVE-2023-3304

JSON object: View

cve-icon Redhat Information

No data.

CWE