CVE-2022-4813

Name of the Vulnerable Software and Affected Versions usememos/memos versions prior to 0.9.1

Description The issue is related to Insufficient Granularity of Access Control in the GitHub repository usememos/memos. This can allow an attacker to delete a memo from the archives.

Recommendations For versions prior to 0.9.1, update to version 0.9.1 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive memos in the archives until the update is applied.