What the vulnerability does
01Description
Missing Authorization vulnerability in rtCamp GoDAM godam allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GoDAM: from n/a through <= 1.4.6.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
What the vulnerability does
Missing Authorization vulnerability in rtCamp GoDAM godam allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GoDAM: from n/a through <= 1.4.6.
Explanation of Vulnerability in Simple Terms
GoDAM versions up to 1.4.6 lack proper authorization checks, allowing unauthenticated attackers to read sensitive information over the network. The vulnerability requires no user interaction and affects confidentiality. Update to a version newer than 1.4.6 to remediate.
What an attacker can do
Read sensitive information without authentication.
Potential impact on your site
Sensitive data may be exposed to unauthenticated users on the internet.
Conditions required to exploit
Network access; no authentication or user interaction required.
Key dates
External resources