VYPR
Vendor

Bytebase

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2022-32170MedSep 28, 2022
    risk 0.28cvss 4.3epss 0.01

    The “Bytebase” application does not restrict low privilege user to access admin “projects“ for which an unauthorized user can view the “projects“ created by “Admin” and the affected endpoint is “/api/project?user=${userId}”.

  • CVE-2022-32169MedSep 28, 2022
    risk 0.28cvss 4.3epss 0.01

    The “Bytebase” application does not restrict low privilege user to access “admin issues“ for which an unauthorized user can view the “OPEN” and “CLOSED” issues by “Admin” and the affected endpoint is “/issue”.