Lucene search
Veracode Vulnerability DatabaseVERACODE:34472HistoryMar 01, 2022 - 7:54 a.m.
Privilege Escalation
2022-03-0107:54:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
20
0.001 Low
EPSS
Percentile
35.0%
rundeck-authz-core is vulnerable to privilege escalation. An attacker can modify or delete system or project-level calendars by sending a malicious request without having proper authorization.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rundeck library rundeck-authz-core | le | 3.4.5-rc2-20211013 | |
| rundeck library rundeck-authz-core | le | 3.4.5-rc2-20211013 |
Related
cvelist
cvelist
CVE-2021-41112 Missing Authorization in Rundeck
2022-02-28 19:15:17
cve
cve
CVE-2021-41112
2022-02-28 20:15:08
osv
osv
CVE-2021-41112
2022-02-28 20:15:08
prion
prion
Authorization
2022-02-28 20:15:00
nvd
nvd
CVE-2021-41112
2022-02-28 20:15:08