Filtered by vendor Bytebase Subscriptions
Filtered by product Bytebase Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-32170 1 Bytebase 1 Bytebase 2024-11-21 N/A
The “Bytebase” application does not restrict low privilege user to access admin “projects“ for which an unauthorized user can view the “projects“ created by “Admin” and the affected endpoint is “/api/project?user=${userId}”.
CVE-2022-32169 1 Bytebase 1 Bytebase 2024-11-21 N/A
The “Bytebase” application does not restrict low privilege user to access “admin issues“ for which an unauthorized user can view the “OPEN” and “CLOSED” issues by “Admin” and the affected endpoint is “/issue”.