oss-sec mailing list archives
Re: CVE Request: Plone Privilege Escalation
From: cve-assign () mitre org
Date: Tue, 22 Sep 2015 16:59:02 -0400 (EDT)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
https://plone.org/security/20150910/privilege-escalation-in-kupu
An incorrect security declaration would allow any authenticated user to edit kupu settings
Use CVE-2015-7317. - -- CVE assignment team, MITRE CVE Numbering Authority M/S M300 202 Burlington Road, Bedford, MA 01730 USA [ PGP key available through http://cve.mitre.org/cve/request_id.html ] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJWAb3nAAoJEL54rhJi8gl5+MkQAMJITuWd1oEUe5jeyirlvtY4 ZdJVO4t9QnkDlWoaWiRwRt1mDT2KSVAASjvzD7c3YpjeNTyycua+GLWVxoowg0QC K3Afqy4wdqdSUH+qSa9+Otk69zP9dpGS+g8QPEohRaKSd35rhjS25A+cv6TTuBYe W2QYY5ceBQNiJxdfWZnzKoxoxtDArUODCK1ZeC0WN3sv8Xe2o7NmPp/eAizCbEX3 M95ZtENDEX0HS0S9FWznT3Bz4C383Z18EC/WMCNEEzUwNAbWtPQ+0NnNmqOU5f3o c8Z4XHPcGeS92c21dHf4+UX3Nd52zmv5xPyt3YLYQvGpP2uLF+XVmAM71JOrha1Y RJULb2vS2CvaiNpwFW0vj+/TjFdlCmb/fOIWc+nIFujHFmQUJNnDeB/lVwV/djY6 D7Vh+zeki9H+FxeecIOyXJa7o8xQu0BEtrL6n1hI3BorJYjZJ5UF+9DKESl1ql6d Ae/QZgS1MpVv1hAoU3qOa7pvz2RsoWqF4WtKFNMVZ+Fagplonoxu03uox6LidEKf Y+8ImuHCnb31ac+pKaw+OgLEK17ZV8SEQDCt0ryXezFVOzKzctPpt+q2KNNTd6cu 0WDC8vnYyS7UVK7I9CW9vV/Hf2gc+i1VT1yVz9xCev3FNCGO3oAFce8f0o7Sp+AX ZNlaPXa67VHQqIII2Pep =kqJZ -----END PGP SIGNATURE-----
Current thread:
- CVE Request: Plone Privilege Escalation Nathan Van Gheem (Sep 19)
- Re: CVE Request: Plone Privilege Escalation cve-assign (Sep 22)