Lucene search

CVE-2022-4810 Improper Access Control in usememos/memos

🗓️ 28 Dec 2022 00:00:00Reported by @huntrdevType

Improper Access Control in usememos/memos GitHub repository prior to version 0.9.

Reporter	Title	Published	Views	Family All 9
Veracode	Information Disclosure	2 Jan 202313:02	–	veracode
Prion	Improper access control	28 Dec 202214:15	–	prion
NVD	CVE-2022-4810	28 Dec 202214:15	–	nvd
OSV	GO-2022-1263 usememos/memos Improper Access Control vulnerability in github.com/usememos/memos	21 Aug 202416:04	–	osv
OSV	usememos/memos Improper Access Control vulnerability	28 Dec 202215:30	–	osv
OSV	CVE-2022-4810	28 Dec 202214:15	–	osv
Github Security Blog	usememos/memos Improper Access Control vulnerability	28 Dec 202215:30	–	github
Huntr	View any content private memos from other users	23 Dec 202214:27	–	huntr
CVE	CVE-2022-4810	28 Dec 202214:15	–	cve

[
  {
    "vendor": "usememos",
    "product": "usememos/memos",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "0.9.1",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
huntr	www.huntr.dev/bounties/f0c8d778-db86-4ed3-85bb-5315ab56915e
github	www.github.com/usememos/memos/commit/3556ae4e651d9443dc3bb8a170dd3cc726517a53

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Dec 2022 00:00Current

4.9Medium risk

Vulners AI Score4.9

CVSS36.3

EPSS0.00054

CWE-284