CVE-2021-4089
published 2021-12-10CVE-2021-4089: Improper Access Control in snipe/snipe-it snipe-it is vulnerable to Improper Access Control
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
EPSS
0.70%
48.4th percentile
Improper Access Control in snipe/snipe-it
snipe-it is vulnerable to Improper Access Control
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| snipe | snipe-it | >= 0 < 5.3.4 | 5.3.4 |
| snipe | snipe_snipe-it | >= unspecified < N/A | N/A |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
nvdv3.04.3MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
cvelistv54.3MEDIUM
vendor_redhat7.1HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
snipe-it is vulnerable to Improper Access Control
ghsa·2021-12-16
CVE-2021-4089 [MEDIUM] CWE-284 snipe-it is vulnerable to Improper Access Control
snipe-it is vulnerable to Improper Access Control
snipe-it prior to version 5.3.4 is vulnerable to Improper Access Control. Regular users with `DENY` set to all models permissions can still view model information via the /models/{id}/clone endpoint due to no authorize('view') permission being set.
OSV
snipe-it is vulnerable to Improper Access Control
osv·2021-12-16
CVE-2021-4089 [MEDIUM] snipe-it is vulnerable to Improper Access Control
snipe-it is vulnerable to Improper Access Control
snipe-it prior to version 5.3.4 is vulnerable to Improper Access Control. Regular users with `DENY` set to all models permissions can still view model information via the /models/{id}/clone endpoint due to no authorize('view') permission being set.
CVEList
Improper Access Control in snipe/snipe-it
cvelistv5·2021-12-10·CVSS 4.3
CVE-2021-4089 [MEDIUM] CWE-284 Improper Access Control in snipe/snipe-it
Improper Access Control in snipe/snipe-it
snipe-it is vulnerable to Improper Access Control
Red Hat
kernel: ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
vendor_redhat·2025-02-26·CVSS 7.1
CVE-2021-47636 [HIGH] CWE-125 kernel: ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
kernel: ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
In the Linux kernel, the following vulnerability has been resolved:
ubifs: Fix read out-of-bounds in ubifs_wbuf_write_nolock()
Function ubifs_wbuf_write_nolock() may access buf out of bounds in
following process:
ubifs_wbuf_write_nolock():
aligned_len = ALIGN(len, 8); // Assume len = 4089, aligned_len = 4096
if (aligned_len avail) ... // Not satisfy
if (wbuf->used) {
ubifs_leb_write() // Fill some data in avail wbuf
len -= wbuf->avail; // len is still not 8-bytes aligned
aligned_len -= wbuf->avail;
}
n = aligned_len >> c->max_write_shift;
if (n) {
n max_write_shift;
err = ubifs_leb_write(c, wbuf->lnum, buf + written,
wbuf->offs, n);
// n > len, read out of bounds less than 8(n-len) bytes
}
, which can be catched by KASAN:
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2021-12-10
Published