PT-2025-16373 · Code-Gen · Code-Gen

Yxzrw

Publicado

2025-04-15

Atualizado

2025-04-15

CVE-2025-29705

CVSS v3.1

4.3

Média

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions code-gen versions 2.0.6 and earlier

Description The issue is related to Incorrect Access Control, where the project lacks permission control, allowing anyone to access such projects.

Recommendations For code-gen versions 2.0.6 and earlier, update to a version that includes permission control to restrict access to projects. As a temporary workaround, consider implementing manual access controls to limit project access until a patched version is available.

Exploit

Correção

Improper Access Control

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-284

Identificadores relacionados

CVE-2025-29705

Produtos afetados

Code-Gen

PT-2025-16373 · Code-Gen · Code-Gen

CVE-2025-29705

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6