CVEs (3)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Ibexa 5Digital Experience Platform Ez Platform KernelEzplatform Http Cache Fastly+2 moreMar 4, 2025 Mar 12, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in eZ Publish Ibexa Kernel before 7.5.28. Access control based on object state is mishandled. |
1Ibexa 7Commerce Digital Experience PlatformEz Platform+4 moreMar 4, 2025 Mar 12, 2023 N/A· v4 3.7 LOW· v3 N/A· v2 An issue was discovered in eZ Platform Ibexa Kernel before 1.3.19. It allows determining account existence via a timing attack. |
1Ibexa 3Digital Experience Platform Ez PlatformEz Platform KernelMar 4, 2025 Mar 12, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 An issue was discovered in eZ Platform Ibexa Kernel before 1.3.26. The Company admin role gives excessive privileges. |