Vulnerabilities > CVE-2015-10033 - Incorrect Authorization vulnerability in Merlinsboard Project Merlinsboard

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

merlinsboard-project

CWE-863

NVD

Published: 2023-01-09

Updated: 2024-04-11

Summary

A vulnerability, which was classified as problematic, was found in jvvlee MerlinsBoard. This affects an unknown part of the component Grade Handler. The manipulation leads to improper authorization. The identifier of the patch is 134f5481e2914b7f096cd92a22b1e6bcb8e6dfe5. It is recommended to apply a patch to fix this issue. The identifier VDB-217713 was assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Merlinsboard_Project Merlinsboard Project Merlinsboard -	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

https://vuldb.com/?ctiid.217713
https://vuldb.com/?id.217713
https://github.com/jvvlee/MerlinsBoard/commit/134f5481e2914b7f096cd92a22b1e6bcb8e6dfe5