PT-2023-23082 · Foundry · Foundry Issues
Publicado
2023-08-03
·
Atualizado
2023-08-08
·
CVE-2023-30952
CVSS v3.1
5.0
Média
| Vetor | AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Foundry Issues versions prior to 6.228.0
Description
A security defect was discovered in Foundry Issues that enabled users to create convincing phishing links by editing the request sent when creating an Issue.
Recommendations
For versions prior to 6.228.0, update to Frontend release 6.228.0 to resolve the issue.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Foundry Issues