CVE-2022-48365
Company admin role gives excessive privileges in eZ Platform Ibexa in packagist/ezsystems/ezpublish-kernel
Identifiers
CVE-2022-48365, GHSA-8h83-chh2-fchp, GHSA-99r3-xmmq-7q7g, GHSA-qq2j-9pf8-g58c
Package Slug
packagist/ezsystems/ezpublish-kernel
Vulnerability
Company admin role gives excessive privileges in eZ Platform Ibexa
Description
An issue was discovered in eZ Platform Ibexa Kernel before 1.3.26. The Company admin role gives excessive privileges.
Affected Versions
All versions starting from 7.5.0 before 7.5.30
Solution
Upgrade to version 7.5.30 or above.
Last Modified
2023-03-16
| source |