CVE-2024-52589 - CERT CVE
ID CVE-2024-52589
Sažetak Discourse is an open source platform for community discussion. Moderators can see the Screened emails list in the admin dashboard, and through that can learn the email of a user. This problem is patched in the latest version of Discourse. Users unable to upgrade should remove moderator role from untrusted users.
Reference
CVSS
Base: 2.2
Impact: 1.4
Exploitability:0.7
Pristup
VektorSloženostAutentikacija
NETWORK HIGH HIGH
Impact
PovjerljivostCjelovitostDostupnost
LOW NONE NONE
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N
Zadnje važnije ažuriranje 19-12-2024 - 20:15
Objavljeno 19-12-2024 - 20:15