Improper Authorization
CVE-2022-4688
Summary
Improper Authorization in usememos/memos versions prior to 0.9.0. This has the same fix as CVE-2022-4684, CVE-2022-4686, CVE-2022-4685, CVE-2022-4689, and CVE-2022-4687.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- NONE
- LOW
- HIGH
- HIGH
CWE-285 - Improper Authorization
The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.
References
Advisory Timeline
- Published