Lucene search

Privilege escalation in beego

🗓️ 06 Apr 2022 00:30:01Reported by GitHub Advisory DatabaseType

Privilege escalation vulnerability in Beego file profile.g

Reporter	Title	Published	Views	Family All 10
Cvelist	CVE-2021-27116	5 Apr 202215:36	–	cvelist
Veracode	Symlink Attack	6 Apr 202208:36	–	veracode
GitLab Advisory Database	Improper Link Resolution Before File Access ('Link Following')	6 Apr 202200:00	–	gitlab
GitLab Advisory Database	Improper Link Resolution Before File Access ('Link Following')	6 Apr 202200:00	–	gitlab
Prion	Design/Logic Flaw	5 Apr 202216:15	–	prion
OSV	Privilege escalation in beego	6 Apr 202200:01	–	osv
OSV	CVE-2021-27116	5 Apr 202216:15	–	osv
CVE	CVE-2021-27116	5 Apr 202216:15	–	cve
NVD	CVE-2021-27116	5 Apr 202216:15	–	nvd
IBM Security Bulletins	Security Bulletin: IBM Storage Fusion and IBM Storage Fusion HCI may be vulnerable to denial of service and link following via Go-Yaml, kube-apiserver, Golang Go and Beego	29 Aug 202321:46	–	ibm

Vulners

Node

beego beegoRange<2.0.2

beego beegoRange2.0.0–2.0.2

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-27116
github	www.github.com/beego/beego/issues/4484
github	www.github.com/advisories/GHSA-ffjp-66mx-3qpj

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Apr 2022 00:01Current

4.4Medium risk

Vulners AI Score4.4

CVSS27.2

CVSS37.8

EPSS0.00048

CWE-59