Lucene search
Veracode Vulnerability DatabaseVERACODE:38455HistoryDec 13, 2022 - 8:37 a.m.
Improper Access Control
2022-12-1308:37:08
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
sentry
vulnerability
access control
invite link
organization security
cookie manipulation
multiple accounts
0.001 Low
EPSS
Percentile
31.5%
Sentry is vulnerable to improper access control. The vulnerability exists due to lack of validation in the invite link which allows an attacker to manipulate a cookie resulting in the ability to join an organization using multiple accounts with a single invite link.
Related
nvd
nvd
CVE-2022-23485
2022-12-10 01:15:10
osv
osv
PYSEC-2022-43011
2022-12-10 01:15:00
CVE-2022-23485
2022-12-10 01:15:10
Sentry vulnerable to invite code reuse via cookie manipulation
2022-12-12 21:27:09
prion
prion
Design/Logic Flaw
2022-12-10 01:15:00
ubuntucve
ubuntucve
CVE-2022-23485
2022-12-10 00:00:00
cvelist
cvelist
CVE-2022-23485 Invite code reuse via cookie manipulation in sentry
2022-12-10 00:40:46
github
github
Sentry vulnerable to invite code reuse via cookie manipulation
2022-12-12 21:27:09
cve
cve
CVE-2022-23485
2022-12-10 01:15:10