Description
ResourceSpace before 4.2.2833 does not properly validate access keys, which allows remote attackers to bypass intended resource restrictions via unspecified vectors.
References (3)
Core 3
Core References
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2011/11/14/3
Patch x_refsource_confirm
http://www.resourcespace.org/download.php
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2011/11/13/2
Scores
EPSS
0.0144
EPSS Percentile
70.1%
Details
CWE
CWE-20
Status
published
Products (15)
montala/resourcespace
2.2.1240
montala/resourcespace
2.3.1374
montala/resourcespace
3.0.1490
montala/resourcespace
3.1.1557
montala/resourcespace
3.2.1651
montala/resourcespace
3.3.1723
montala/resourcespace
3.4.1794
montala/resourcespace
3.5.1857
montala/resourcespace
3.6.2022
montala/resourcespace
3.7.2088
... and 5 more
Published
Nov 19, 2011
Tracked Since
Feb 18, 2026