CVE-2018-14836

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2018-14836
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-14836.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-14836
Published
2018-08-02T00:29:00.263Z
Modified
2026-04-10T04:06:03.887242Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

Subrion 4.2.1 is vulnerable to Improper Access control because user groups not having access to the Admin panel are able to access it (but not perform actions) if the Guests user group has access to the Admin panel.

References

Affected packages

Git / github.com/intelliants/subrion

Affected ranges

Type
GIT
Repo
https://github.com/intelliants/subrion
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
b8d2c1b2d71120bb55162722818f49ddcd064108
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "4.2.1"
        }
    ]
}

Affected versions

v4.*
v4.0.0
v4.0.1
v4.0.2
v4.0.3
v4.0.4
v4.0.5
v4.1.0
v4.1.4
v4.1.5
v4.2.0
v4.2.1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-14836.json"