CVE-2022-2063
HIGH8.8EPSS 1.1%Improper Privilege Management in NocoDB
發布日:2022/6/14修改日:2023/11/8
描述
Improper Privilege Management in GitHub repository nocodb/nocodb prior to 0.91.8.
受影響套件(1)
- npm/nocodbfrom 0, < 0.91.8
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
參考連結(6)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2022-2063
- PATCHhttps://github.com/nocodb/nocodb
- WEBhttps://github.com/nocodb/nocodb/commit/269a19c2ad89a0e8a7596498e3806ff2ec1040c2
- WEBhttps://github.com/nocodb/nocodb/pull/2262
- WEBhttps://github.com/nocodb/nocodb/pull/2337
- WEBhttps://huntr.dev/bounties/156f405b-21d6-4384-9bff-17ebfe484e20