3 matches found
CVE-2021-44795
creationtimestamp| type| source ---|---|--- 2022-01-27 16:20:34+00:00| seen| https://t.me/cibsecurity/36378...
CVE-2021-44795 Modifying User Permissions via Unauthorized Access in Single Connect
Single Connect does not perform an authorization check when using the "sc-assigned-credential-ui" module. A remote attacker could exploit this vulnerability to modify users permissions. The exploitation of this vulnerability might allow a remote attacker to delete permissions from other users...
CVE-2021-44795
Single Connect exposes a vulnerability in the sc-assigned-credential-ui module where no authorization check is performed. This allows a remote attacker to modify or delete other users’ permissions without authenticating, via a network pathway. The CVE is documented with CVSS metrics indicating me...