EPSS
Percentile
30.4%
Snipe-IT prior to 5.3.9 is vulnerable to improper privilege management. A user who does not have access to the supplier module may view supplier content.
github.com/snipe/snipe-it
github.com/snipe/snipe-it/commit/db0c0e790892db874573d95f8ae4268b8a011ab1
huntr.dev/bounties/70a99cf4-3241-4ffc-b9ed-5c54932f3849
nvd.nist.gov/vuln/detail/CVE-2022-0579