Dapr Dashboard vulnerable to Incorrect Access Control
High severity
GitHub Reviewed
Published
Oct 4, 2022
to the GitHub Advisory Database
•
Updated Aug 17, 2023
Package
Affected versions
>= 0.1.0, <= 0.10.0
Patched versions
None
Description
Published by the National Vulnerability Database
Oct 3, 2022
Published to the GitHub Advisory Database
Oct 4, 2022
Reviewed
Oct 4, 2022
Last updated
Aug 17, 2023
Dapr Dashboard v0.1.0 through v0.10.0 is vulnerable to Incorrect Access Control that allows attackers to obtain sensitive data.
References