CVE-2021-3813 Information

Description

Improper Privilege Management in GitHub repository chatwoot/chatwoot prior to v2.2.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Reference

https://github.com/chatwoot/chatwoot/commit/9454c6b14f75e778ef98cf84bdafdf0ed8ae5705 https://huntr.dev/bounties/36f02c4f-cf1c-479e-a1ad-091a1ac7cb56

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

NONE

Base Severity

6.5