VYPR
Unrated severityNVD Advisory· Published Aug 1, 2022· Updated Apr 23, 2025

Improper Authorization in eLabFTW

CVE-2022-31178

Description

eLabFTW is an electronic lab notebook manager for research teams. A vulnerability was discovered which allows a logged in user to read a template without being authorized to do so. This vulnerability has been patched in 4.3.4. Users are advised to upgrade. There are no known workarounds for this issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Elabftw/Elabftwllm-fuzzy2 versions
    <4.3.4+ 1 more
    • (no CPE)range: <4.3.4
    • (no CPE)range: < 4.3.4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.