Lucene search

PRIOn knowledge basePRION:CVE-2023-5948

HistoryNov 03, 2023 - 7:15 a.m.

Authorization

2023-11-0307:15:00

PRIOn knowledge base

www.prio-n.com

github

repository

teamamaze

amazefileutilities

nvd

authorization

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

6.8 Medium

AI Score

Confidence

High

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

18.1%

JSON

Improper Authorization in GitHub repository teamamaze/amazefileutilities prior to 1.91.

CPENameOperatorVersion
amaze_file_utilitieslt1.90

CPE	Name	Operator	Version
	amaze_file_utilities	lt	1.90

References

github.com/teamamaze/amazefileutilities/commit/62d02204d452603ab85c50d43c7c680e4256c7d7

huntr.com/bounties/ac1363b5-207b-40d9-aac5-e66d6213f692

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

6.8 Medium

AI Score

Confidence

High

3.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

18.1%

JSON

Related for PRION:CVE-2023-5948