← volver
CVE-2022-3019

Improper Access Control in tooljet/tooljet

CVSS 7.1 HIGHEPSS 0.7%CWE-284
The forgot password token basically just makes us capable of taking over the account of whoever comment in an app that we can see (bruteforcing comment id's might also be an option but I wouldn't count on it, since it would take a long time to find a valid one).
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Productos afectados
tooljet · tooljet/tooljet

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/tooljet/tooljet/commit/45e0d3302d92df7d7f2d609c31cea71165600b79https://huntr.dev/bounties/a610300b-ce3c-4995-8337-11942b3621bf