5.5

CVE-2023-5321

Exploit

Missing Authorization in hamza417/inure

Missing Authorization in GitHub repository hamza417/inure prior to build94.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hamza417Inure Versionbuild44 SwPlatformandroid
Hamza417Inure Versionbuild45 SwPlatformandroid
Hamza417Inure Versionbuild46 SwPlatformandroid
Hamza417Inure Versionbuild47 SwPlatformandroid
Hamza417Inure Versionbuild48 SwPlatformandroid
Hamza417Inure Versionbuild49 SwPlatformandroid
Hamza417Inure Versionbuild51 SwPlatformandroid
Hamza417Inure Versionbuild52 SwPlatformandroid
Hamza417Inure Versionbuild53 SwPlatformandroid
Hamza417Inure Versionbuild55 SwPlatformandroid
Hamza417Inure Versionbuild56 SwPlatformandroid
Hamza417Inure Versionbuild57 SwPlatformandroid
Hamza417Inure Versionbuild58 SwPlatformandroid
Hamza417Inure Versionbuild59 SwPlatformandroid
Hamza417Inure Versionbuild60 SwPlatformandroid
Hamza417Inure Versionbuild61 SwPlatformandroid
Hamza417Inure Versionbuild62 SwPlatformandroid
Hamza417Inure Versionbuild63 SwPlatformandroid
Hamza417Inure Versionbuild64 SwPlatformandroid
Hamza417Inure Versionbuild65 SwPlatformandroid
Hamza417Inure Versionbuild66 SwPlatformandroid
Hamza417Inure Versionbuild67 SwPlatformandroid
Hamza417Inure Versionbuild68 SwPlatformandroid
Hamza417Inure Versionbuild69 SwPlatformandroid
Hamza417Inure Versionbuild70 SwPlatformandroid
Hamza417Inure Versionbuild71 SwPlatformandroid
Hamza417Inure Versionbuild72 SwPlatformandroid
Hamza417Inure Versionbuild73 SwPlatformandroid
Hamza417Inure Versionbuild74 SwPlatformandroid
Hamza417Inure Versionbuild75 SwPlatformandroid
Hamza417Inure Versionbuild76 SwPlatformandroid
Hamza417Inure Versionbuild77 SwPlatformandroid
Hamza417Inure Versionbuild78 SwPlatformandroid
Hamza417Inure Versionbuild79 SwPlatformandroid
Hamza417Inure Versionbuild80 SwPlatformandroid
Hamza417Inure Versionbuild83 SwPlatformandroid
Hamza417Inure Versionbuild85 SwPlatformandroid
Hamza417Inure Versionbuild86 SwPlatformandroid
Hamza417Inure Versionbuild87 SwPlatformandroid
Hamza417Inure Versionbuild88 SwPlatformandroid
Hamza417Inure Versionbuild89 SwPlatformandroid
Hamza417Inure Versionbuild92 SwPlatformandroid
Hamza417Inure Versionbuild93 SwPlatformandroid
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.26% 0.172
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
security@huntr.dev 5.1 2.5 2.5
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CWE-862 Missing Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

https://github.com/hamza417/inure/commit/57fda918bfd2fb863f579841a46363fe8e10c29b
Patch
https://huntr.dev/bounties/b1becc68-e738-458f-bd99-06ee77580d3a
Exploit