vantage6@4.2.0 vulnerabilities
vantage6 command line interface
-
latest version
4.5.0
-
latest non vulnerable version
-
first published
4 years ago
-
latest version published
2 hours ago
-
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the vantage6 package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
vantage6 is a vantage6 command line interface Affected versions of this package are vulnerable to Improper Access Control in the collaboration management process. An attacker can extend their influence by adding extra organizations to their collaboration and creating new users with known passwords, allowing them to read task results of other collaborations. How to fix Improper Access Control? Upgrade |
[,4.5.0rc3)
|
vantage6 is a vantage6 command line interface Affected versions of this package are vulnerable to Race Condition via the API routes How to fix Race Condition? Upgrade |
[,4.3.0)
|
vantage6 is a vantage6 command line interface Affected versions of this package are vulnerable to Incorrect Authorization due to overly permissive CORS settings. An attacker can exploit this vulnerability by sending requests from unauthorized origins, potentially leading to unauthorized actions or data exposure. How to fix Incorrect Authorization? Upgrade |
[,4.3.0)
|