5 matches found
CVE-2023-35164
DataEase is an open source data visualization analysis tool to analyze data and gain insight into business trends. In affected versions a missing authorization check allows unauthorized users to manipulate a dashboard created by the administrator. This vulnerability has been fixed in version...
CVE-2023-35164
creationtimestamp| type| source ---|---|--- 2023-06-27 02:25:07+00:00| seen| https://t.me/cibsecurity/65559...
CVE-2023-35164
CVE-2023-35164 (DataEase) involves a missing authorization check in DataEase prior to version 1.18.8, allowing unauthorized users to manipulate dashboards created by an administrator. The issue affects versions before 1.18.8; the vulnerability is fixed in 1.18.8. In-scope impact is partial on int...
CVE-2023-35164 Unauthorized users can manipulate a dashboard created by an administrator in DataEase
DataEase is an open source data visualization analysis tool to analyze data and gain insight into business trends. In affected versions a missing authorization check allows unauthorized users to manipulate a dashboard created by the administrator. This vulnerability has been fixed in version...
CVE-2023-35164 Unauthorized users can manipulate a dashboard created by an administrator in DataEase
DataEase is an open source data visualization analysis tool to analyze data and gain insight into business trends. In affected versions a missing authorization check allows unauthorized users to manipulate a dashboard created by the administrator. This vulnerability has been fixed in version...