rundeck-authz-core is vulnerable to privilege escalation. An attacker can modify or delete system or project-level calendars by sending a malicious request without having proper authorization.
CPE | Name | Operator | Version |
---|---|---|---|
rundeck library rundeck-authz-core | le | 3.4.5-rc2-20211013 | |
rundeck library rundeck-authz-core | le | 3.4.5-rc2-20211013 |