3 matches found
CVE-2022-48367
An issue was discovered in eZ Publish Ibexa Kernel before 7.5.28. Access control based on object state is mishandled...
CVE-2022-48367
An issue in eZ Publish Ibexa Kernel prior to 7.5.28 permits improper access control based on object state, leading to potential unauthorized access. CVSS v3.1 base score 9.8 (CRITICAL); attack vector NETWORK, no user interaction. A remediation is to upgrade to 7.5.28 or later per the associated a...
CVE-2022-48367
An issue was discovered in eZ Publish Ibexa Kernel before 7.5.28. Access control based on object state is mishandled...