CVE-2021-3813
MEDIUMGitHub chatwoot/chatwoot < 2.2 - Privilege Escalation
Title source: llmDescription
Improper Privilege Management in GitHub repository chatwoot/chatwoot prior to v2.2.
References (2)
Core 2
Core References
Exploit, Patch, Third Party Advisory x_refsource_confirm
https://huntr.dev/bounties/36f02c4f-cf1c-479e-a1ad-091a1ac7cb56
Patch, Third Party Advisory x_refsource_misc
https://github.com/chatwoot/chatwoot/commit/9454c6b14f75e778ef98cf84bdafdf0ed8ae5705
Scores
CVSS v3
6.5
EPSS
0.0023
EPSS Percentile
45.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-269
CWE-639
Status
published
Products (1)
chatwoot/chatwoot
< 2.1.1
Published
Feb 09, 2022
Tracked Since
Feb 18, 2026