← Back

Bytebase

bytebase

Vendor: Bytebase • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-32170
1Bytebase
1Bytebase
May 21, 2025
Sep 28, 2022
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The “Bytebase” application does not restrict low privilege user to access admin “projects“ for which an unauthorized user can view the “projects“ created by “Admin” and the affected endpoint is “/api/project?user=${userI...Show more
The “Bytebase” application does not restrict low privilege user to access admin “projects“ for which an unauthorized user can view the “projects“ created by “Admin” and the affected endpoint is “/api/project?user=${userId}”.Show less
CVE-2022-32169
1Bytebase
1Bytebase
May 21, 2025
Sep 28, 2022
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The “Bytebase” application does not restrict low privilege user to access “admin issues“ for which an unauthorized user can view the “OPEN” and “CLOSED” issues by “Admin” and the affected endpoint is “/issue”.