CVE-2021-30080

CRITICAL

beego < 1.12.11 - Access Control Bypass via Route Lookup

Title source: llm
STIX 2.1

Description

An issue was discovered in the route lookup process in beego before 1.12.11 that allows attackers to bypass access control.

Scores

CVSS v3 9.8
EPSS 0.0121
EPSS Percentile 64.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (3)
beego/beego < 2.0.1
beego/beego 0Go
beego/beego 2.0.0 - 2.0.3Go
Published Apr 05, 2022
Tracked Since Feb 18, 2026