CVE-2015-10033 LOW

CVE-2015-10033: jvvlee MerlinsBoard Grade improper authorization

Vendor Jvvlee

Product MerlinsBoard

Weakness CWE-285

Published January 9, 2023

Last update August 6, 2024

View on NVD All CVEs

CVSS base score

3.5/10

Attack vector Adjacent

Attack complexity Low

Privileges required High

User interaction None

Confidentiality None

Integrity Low

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L

What the vulnerability does

01Description

A vulnerability, which was classified as problematic, was found in jvvlee MerlinsBoard. This affects an unknown part of the component Grade Handler. The manipulation leads to improper authorization. The identifier of the patch is 134f5481e2914b7f096cd92a22b1e6bcb8e6dfe5. It is recommended to apply a patch to fix this issue. The identifier VDB-217713 was assigned to this vulnerability.

Key dates

02Disclosure timeline

January 9, 2023 CVE published

August 6, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2015-10033

Related vulnerabilities

CVE-2015-10033: jvvlee MerlinsBoard Grade improper authorization

01Description

02Disclosure timeline

03References

04Related CVE