4.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
25.0%
Default SilverStripe GraphQL Server (aka silverstripe/graphql) 3.x through 3.4.1 permission checker not inherited by query subclass.
github.com/silverstripe/silverstripe-graphql/releases
www.silverstripe.org/download/security-releases/CVE-2021-28661