2 matches found
Unauthorized Access To Uploaded Media Files
Nautobot is vulnerable to unauthorized access to uploaded media files. The vulnerability is due to improper access control on the file-serving endpoint, allowing attackers to access and download sensitive files without authentication by guessing or knowing their URLs...
CVE-2022-23999
PendingIntent hijacking vulnerability in CpaReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent...