← back
CVE-2021-44837

CVE-2021-44837

EPSS 0.8%
An issue was discovered in Delta RM 1.2. It is possible for an unprivileged user to access the same information as an admin user regarding the risk creation information in the /risque/administration/referentiel/json/create/categorie endpoint, using the id_cat1 query parameter to indicate the risk.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://gist.github.com/rntcruz23/8a91e6366a8247a0692c8ce2dfe87f21https://www.deltarm.com