CVE-2021-4089: Incorrect Authorization

December 10, 2021 (updated August 9, 2022)

snipe-it is vulnerable to Improper Access Control

References

github.com/snipe/snipe-it/commit/1699c09758e56f740437674a8d6ba36443399f24
huntr.dev/bounties/19453ef1-4d77-4cff-b7e8-1bc8f3af0862
nvd.nist.gov/vuln/detail/CVE-2021-4089

Detect and mitigate CVE-2021-4089 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →