漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Sakai: Kernel users created with type roleview can login as a normal user
Vulnerability Description
Sakai is a Collaboration and Learning Environment. Starting in version 23.0 and prior to version 23.2, kernel users created with type roleview can log in as a normal user. This can result in illegal access being granted to the system. Version 23.3 fixes this vulnerability.
CVSS Information
N/A
Vulnerability Type
授权机制不恰当
Vulnerability Title
Sakai 安全漏洞
Vulnerability Description
Sakai是Apereo Sakai开源的一个免费提供、功能丰富的技术解决方案,用于学习、教学、研究和协作。 Sakai 23.0至23.2之前版本存在安全漏洞,该漏洞源于使用roleview类型创建的内核用户可以以普通用户身份登录,可能导致授予对系统的非法访问权限。
CVSS Information
N/A
Vulnerability Type
N/A