Skip to main content

Incorrect Privilege Assignment

CVE-2022-2626

Severity High
Score 7.2/10

Summary

Incorrect Privilege Assignment in GitHub repository hestiacp/hestiacp prior to 1.6.6.

  • LOW
  • NETWORK
  • HIGH
  • UNCHANGED
  • NONE
  • HIGH
  • HIGH
  • HIGH

CWE-266 - Incorrect Privilege Assignment

A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

References

Advisory Timeline

  • Published