Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/02/04 11:46 p.m.6 views

CVE-2024-22409

DataHub is an open-source metadata platform. In affected versions a low privileged user could remove a user, edit group members, or edit another user's profile information. The default privileges gave too many broad permissions to low privileged users. These have been constrained in PR 9067 to...

8.8CVSS7.2AI score0.00652EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2024/01/16 10:16 p.m.3 views

CVE-2024-22409 Default Privileges allow for high level operations for low privileged users in datahub

DataHub is an open-source metadata platform. In affected versions a low privileged user could remove a user, edit group members, or edit another user's profile information. The default privileges gave too many broad permissions to low privileged users. These have been constrained in PR 9067 to...

7.5CVSS8.3AI score0.00652EPSS
Exploits1References2
cve
cve
added 2024/01/16 10:16 p.m.207 views

CVE-2024-22409

DataHub (open‑source metadata platform) has a privilege‑escalation issue in affected versions where a low‑privileged user could remove a user, edit group members, or edit another user’s profile information due to overly broad default privileges. The root cause is tied to default permissions being...

8.8CVSS8.7AI score0.00652EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2024/01/16 10:16 p.m.24 views

CVE-2024-22409 Default Privileges allow for high level operations for low privileged users in datahub

DataHub is an open-source metadata platform. In affected versions a low privileged user could remove a user, edit group members, or edit another user's profile information. The default privileges gave too many broad permissions to low privileged users. These have been constrained in PR 9067 to...

7.5CVSS9AI score0.00652EPSS
Exploits1References2
Rows per page
Query Builder