Vulnerabilities (CVE)

Filtered by vendor Mitre Subscribe
Filtered by product Cve Services
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-46561 1 Mitre 1 Cve Services 2024-11-21 6.5 MEDIUM 7.2 HIGH
controller/org.controller/org.controller.js in the CVE Services API 1.1.1 before 5c50baf3bda28133a3bc90b854765a64fb538304 allows an organizational administrator to transfer a user account to an arbitrary new organization, and thereby achieve unintended access within the context of that new organization.