Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2022-39342
- EPSS 0.33%
- Veröffentlicht 25.10.2022 17:15:56
- Zuletzt bearbeitet 21.11.2024 07:18:04
OpenFGA is an authorization/permission engine. Versions prior to version 0.2.4 are vulnerable to authorization bypass under certain conditions. Users whose model has a relation defined as a tupleset (the right hand side of a ‘from’ statement) that in...
9.8
CVE-2022-39341
- EPSS 0.33%
- Veröffentlicht 25.10.2022 17:15:56
- Zuletzt bearbeitet 21.11.2024 07:18:04
OpenFGA is an authorization/permission engine. Versions prior to version 0.2.4 are vulnerable to authorization bypass under certain conditions. Users who have wildcard (`*`) defined on tupleset relations in their authorization model are vulnerable. V...