Skip to main content

Foundry Comments

2 CVEs product

Monthly

CVE-2023-30956 MEDIUM This Month

A security defect was identified in Foundry Comments that enabled a user to discover the contents of an attachment submitted to another comment if they knew the internal UUID of the target. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. No vendor patch available.

Authentication Bypass Foundry Comments
NVD
CVSS 3.1
5.3
EPSS
0.5%
CVE-2023-30948 MEDIUM This Month

A security defect in Foundry's Comments functionality resulted in the retrieval of attachments to comments not being gated by additional authorization checks. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Foundry Comments
NVD
CVSS 3.1
6.5
EPSS
0.5%
EPSS 0% CVSS 5.3
MEDIUM This Month

A security defect was identified in Foundry Comments that enabled a user to discover the contents of an attachment submitted to another comment if they knew the internal UUID of the target. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. No vendor patch available.

Authentication Bypass Foundry Comments
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

A security defect in Foundry's Comments functionality resulted in the retrieval of attachments to comments not being gated by additional authorization checks. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Foundry Comments
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy