GHSA-2w6m-q946-399r

Source

https://github.com/advisories/GHSA-2w6m-q946-399r

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/10/GHSA-2w6m-q946-399r/GHSA-2w6m-q946-399r.json

Aliases

• CVE-2022-38817

Published

2022-10-04T00:00:25Z

Modified

2023-11-08T04:10:13.706854Z

Details

Dapr Dashboard v0.1.0 through v0.10.0 is vulnerable to Incorrect Access Control that allows attackers to obtain sensitive data.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-38817
• https://github.com/dapr/dashboard/issues/222
• https://github.com/dapr/dashboard