U.S. Dept Of Defense: ASBS viewing other soldiers PII/Board/Board Voters/ETC
The vulnerability allowed an authenticated user to run GraphQL queries that returned sensitive information on other users, such as their personally identifiable information, board information, and clearance details. The vulnerability was present in version 1.09.00.0 of the affected system and...