Lucene search
+L

4 matches found

NVD
NVD
added 2021/12/24 7:15 a.m.23 views

CVE-2021-20874

Incorrect permission assignment for critical resource vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows a remote unauthenticated attacker to access arbitrary files on the server and obtain...

7.5CVSS0.01296EPSS
Exploits0References2
OSV
OSV
added 2021/12/24 7:15 a.m.7 views

CVE-2021-20874

Incorrect permission assignment for critical resource vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows a remote unauthenticated attacker to access arbitrary files on the server and obtain...

7.5CVSS7.3AI score0.01296EPSS
Exploits0References2
CVE
CVE
added 2021/12/24 6:30 a.m.55 views

CVE-2021-20874

CVE-2021-20874 involves incorrect permission assignment in GroupSession components (Free edition v5.1.1 and earlier, byCloud v5.1.1 and earlier, ZION v5.1.1 and earlier). The root cause is CWE-732 (Incorrect Permission Assignment for Critical Resource), enabling a remote unauthenticated attacker ...

7.5CVSS7.4AI score0.01296EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/12/20 12:0 a.m.45 views

JVN#79798166: Multiple vulnerabilities in GroupSession

GroupSession provided by Japan Total System Co.,Ltd. contains multiple vulnerabilities listed below. Incorrect Permission Assignment for Critical Resource CWE-732 - CVE-2021-20874 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N| Base Score: 7.5 CVSS v2|...

7.5CVSS7AI score0.01296EPSS
Exploits0
Rows per page
Query Builder