4 matches found
CVE-2022-31007
eLabFTW is an electronic lab notebook manager for research teams. Prior to version 4.3.0, a vulnerability allows an authenticated user with an administrator role in a team to assign itself system administrator privileges within the application, or create a new system administrator account. The...
CVE-2022-31007
eLabFTW is an electronic lab notebook manager for research teams. Prior to version 4.3.0, a vulnerability allows an authenticated user with an administrator role in a team to assign itself system administrator privileges within the application, or create a new system administrator account. The...
CVE-2022-31007
eLabFTW prior to 4.3.0 contains a permission issue where an authenticated administrator within a team can grant themselves system administrator privileges or create a new system administrator account. The vulnerability stems from abuse of administrator permissions and is mitigated in version 4.3....
CVE-2022-31007 Privilege escalation from administrator in eLabFTW
eLabFTW is an electronic lab notebook manager for research teams. Prior to version 4.3.0, a vulnerability allows an authenticated user with an administrator role in a team to assign itself system administrator privileges within the application, or create a new system administrator account. The...