CVE-2021-35970
HIGHCoral Talk 4.0.0-4.12.0 - Unauthenticated Sensitive Information Exposure via GraphQL Permission Check Bypass
Title source: llmDescription
Talk 4 in Coral before 4.12.1 allows remote attackers to discover e-mail addresses and other sensitive information via GraphQL because permission checks use an incorrect data type.
References (4)
Core 4
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/coralproject/talk/issues/3600
Patch, Third Party Advisory x_refsource_misc
https://github.com/coralproject/talk/pull/3599
Exploit, Vendor Advisory x_refsource_misc
https://docs.coralproject.net/coral/api/graphql/#User
Patch, Third Party Advisory x_refsource_misc
https://github.com/coralproject/talk/compare/v4.12.0...v4.12.1
Scores
CVSS v3
7.5
EPSS
0.0231
EPSS Percentile
81.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-697
Status
published
Products (1)
voxmedia/coral_talk
4.0.0 - 4.12.1
Published
Jun 30, 2021
Tracked Since
Feb 18, 2026