Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Thehive-project Subscribe
Filtered by product Thehive
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-18376 1 Thehive-project 1 Thehive 2019-06-24 6.5 MEDIUM 8.8 HIGH
An improper authorization check in the User API in TheHive before 2.13.4 and 3.x before 3.3.1 allows users with read-only or read/write access to escalate their privileges to the administrator's privileges. This affects app/controllers/UserCtrl.scala.