CVE-2019-12887

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-12887

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-12887.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2019-12887

Aliases

Published

2019-06-27T14:15:10Z

Modified

2024-10-12T04:21:05.264456Z

Severity

8.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

KeyIdentity LinOTP before 2.10.5.3 has Incorrect Access Control (issue 1 of 2).

References

https://www.linotp.org/CVE-2019-12887.txt

Affected packages

Git / github.com/linotp/linotp

Affected ranges

Type: GIT
Repo: https://github.com/linotp/linotp
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

84374c6001e90962aaa92fee533d9a7aaf656878

Affected versions

dev/2.*

dev/2.10.0.9

dev/2.10.1rc0

dev/2.10rc1

dev/2.10rc2

dev/2.10rc3

dev/2.7.1rc0

dev/2.7.1rc1

dev/2.7.2.1b0

dev/2.7.2.1b1

dev/2.7.2.1b2

dev/2.7.2.1b3

dev/2.7.2.1b4

dev/2.7.2.1b5

dev/2.7.2.1b6

dev/2.7.2.2b0

dev/2.7.2.2rc0

dev/2.7.2.2rc1

dev/2.7.2b0

dev/2.7.2b1

dev/2.7.2b2

dev/2.8.0.2rc0

dev/2.8.0.2rc1

dev/2.8.0.3rc0

dev/2.8.0.3rc1

dev/2.8.0.3rc2

dev/2.8.1.2rc0

dev/2.8.1.2rc1

dev/2.8.1rc0

dev/2.8.1rc1

dev/2.8.1rc2

dev/2.8rc0

dev/2.8rc1

dev/2.9.1.1rc0

dev/2.9.1rc0

dev/2.9.3.1rc0

dev/2.9.3.2rc

dev/2.9.3.2rc0

dev/2.9.3rc0

dev/2.9.3rc1

dev/2.9rc0

dev/2.9rc1

dev/2.9rc2

release/2.*

release/2.10

release/2.10.0.1

release/2.10.0.10

release/2.10.0.2

release/2.10.0.3

release/2.10.0.4

release/2.10.0.5

release/2.10.0.6

release/2.10.0.8

release/2.10.1

release/2.10.1.2

release/2.10.4

release/2.10.5.1

release/2.10.5.2

release/2.7.0.1

release/2.7.0.2

release/2.7.1

release/2.7.1.1

release/2.7.1.2

release/2.7.2

release/2.7.2.1

release/2.7.2.2

release/2.8

release/2.8.0.1

release/2.8.0.2

release/2.8.0.3

release/2.8.1

release/2.8.1.1

release/2.8.1.2

release/2.8.1.3

release/2.8.1.4

release/2.9

release/2.9.0.1

release/2.9.0.2

release/2.9.0.3

release/2.9.0.4

release/2.9.1

release/2.9.1.1

release/2.9.1.2

release/2.9.1.3

release/2.9.1.4

release/2.9.3

release/2.9.3.1

release/2.9.3.2

release/2.9.3.3