Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Sakai: Kernel users created with type roleview can login as a normal user
Vulnerability Description
Sakai is a Collaboration and Learning Environment. Starting in version 23.0 and prior to version 23.2, kernel users created with type roleview can log in as a normal user. This can result in illegal access being granted to the system. Version 23.3 fixes this vulnerability.
CVSS Information
N/A
Vulnerability Type
授权机制不恰当
Vulnerability Title
Sakai 安全漏洞
Vulnerability Description
Sakai是Apereo Sakai开源的一个免费提供、功能丰富的技术解决方案,用于学习、教学、研究和协作。 Sakai 23.0至23.2之前版本存在安全漏洞,该漏洞源于使用roleview类型创建的内核用户可以以普通用户身份登录,可能导致授予对系统的非法访问权限。
CVSS Information
N/A
Vulnerability Type
N/A