漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
OpenFGA Authorization Bypass
Vulnerability Description
OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA v1.8.10 to v1.3.6 (Helm chart <= openfga-0.2.28, docker <= v.1.8.10) are vulnerable to authorization bypass when certain Check and ListObject calls are executed. This issue has been patched in version 1.8.11.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
OpenFGA 访问控制错误漏洞
Vulnerability Description
OpenFGA是OpenFGA开源的一款为开发人员构建并受 Google Zanzibar 启发的高性能和灵活的授权/许可引擎。 OpenFGA v1.3.6至v1.8.10版本存在访问控制错误漏洞,该漏洞源于授权绕过,可能导致未授权访问。
CVSS Information
N/A
Vulnerability Type
N/A