4 matches found
CVE-2022-46792
Hasura GraphQL Engine before 2.15.2 mishandles row-level authorization in the Update Many API for Postgres backends. The fixed versions are 2.10.2, 2.11.3, 2.12.1, 2.13.2, 2.14.1, and 2.15.2. Versions before 2.10.0 are unaffected...
CVE-2022-46792
Hasura GraphQL Engine before 2.15.2 mishandles row-level authorization in the Update Many API for Postgres backends. The fixed versions are 2.10.2, 2.11.3, 2.12.1, 2.13.2, 2.14.1, and 2.15.2. Versions before 2.10.0 are unaffected...
CVE-2022-46792
Hasura GraphQL Engine CVE-2022-46792 affects Postgres backends via the Update Many API where row-level authorization is mishandled in versions up to 2.15.2. The issue does not affect versions before 2.10.0. Fixed releases are 2.10.2, 2.11.3, 2.12.1, 2.13.2, 2.14.1, and 2.15.2. The CVE’s impact is...
CVE-2022-46792
Hasura GraphQL Engine before 2.15.2 mishandles row-level authorization in the Update Many API for Postgres backends. The fixed versions are 2.10.2, 2.11.3, 2.12.1, 2.13.2, 2.14.1, and 2.15.2. Versions before 2.10.0 are unaffected...