Lucene search
GitHub Advisory DatabaseGHSA-5C86-GPVC-FP53HistoryApr 19, 2023 - 3:30 p.m.
PowerJob vulnerable to Insecure Permissions
2023-04-1915:30:21
CWE-276
GitHub Advisory Database
github.com
5
powerjob
vulnerable
insecure permissions
list job
software
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0.035
Percentile
91.6%
PowerJob V4.3.1 is vulnerable to Insecure Permissions via the list job interface.
Affected configurations
Node
tech.powerjobpowerjobRange≤4.3.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| tech.powerjob | powerjob | * | cpe:2.3:a:tech.powerjob:powerjob:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2023-29923
2023-04-19 14:15:07
osv
osv
CVE-2023-29923
2023-04-19 14:15:07
PowerJob vulnerable to Insecure Permissions
2023-04-19 15:30:21
nuclei
nuclei
PowerJob <=4.3.2 - Unauthenticated Access
2023-05-14 03:14:15
PowerJob V4.3.1 - Authentication Bypass
2023-04-26 16:25:53
cvelist
cvelist
CVE-2023-29923
2023-04-19 00:00:00
nvd
nvd
CVE-2023-29923
2023-04-19 14:15:07
githubexploit
githubexploit
Exploit for Incorrect Default Permissions in Powerjob
2023-05-29 05:48:35
Exploit for Incorrect Default Permissions in Powerjob
2023-05-23 06:06:50
prion
prion
Design/Logic Flaw
2023-04-19 14:15:00
veracode
veracode
Insecure Permissions
2023-05-18 04:12:56
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0.035
Percentile
91.6%
Related for GHSA-5C86-GPVC-FP53