Vulnerabilities > Openiam > High

DATE CVE VULNERABILITY TITLE RISK
2021-04-06 CVE-2020-13422 Missing Authorization vulnerability in Openiam
OpenIAM before 4.2.0.3 does not verify if a user has permissions to perform /webconsole/rest/api/* administrative actions.
network
low complexity
openiam CWE-862
8.1
8.1