VWE-2020-5955 Printable Version

https://www.vaultwiki.org/pages/Book/Documentation/VWE-2020-5955
This page is a chapter in Info Known Vulnerabilities

This page has been seen 78,387 times.

    • Created by on
Common NameNone
VWE-IDVWE-2020-5955
Related ReportNone
SeverityMEDIUM
Exploit DifficultyNORMAL
PlatformAffects all platforms supported by the vulnerable versions.
DescriptionPermissions Escalation. A user can see the name of a category they don't have permission to view, as long as they have permission to edit the categories for a page that is already a member of that category. Does not affect Lite versions.
DiscoveredOctober 18, 2020
ResolvedNovember 8, 2020
Patches Available4.1.0 Patch Level 2
4.1.0 RC 3 Patch Level 4
4.1.0 RC 2 Patch Level 5
4.1.0 RC 1 Patch Level 6
4.0.28 Patch Level 6
The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.