2 matches found
CVE-2021-44837
An issue was discovered in Delta RM 1.2. It is possible for an unprivileged user to access the same information as an admin user regarding the risk creation information in the /risque/administration/referentiel/json/create/categorie endpoint, using the idcat1 query parameter to indicate the risk...
CVE-2021-44837
Delta RM 1.2 is affected by an authorization issue where an unprivileged user can access the same information as an administrator regarding risk creation via the endpoint /risque/administration/referentiel/json/create/categorie using the id_cat1 parameter. The root cause is insufficient access co...