TVN ID | TVN-202109001 |
---|---|
Affected Products | Hanlin TEAMS < v4.2.0 |
Description | Permission verification of the specific API function of TEAMS Cloud Academy loophole. While logging in, authenticated attackers can obtain a specific user’s permissions remotely, including accessing, modifying and deleting the relevant data processed by the user. |
Solution | Hanlin TEAMS v4.2.0 |
Credit | CHANG JUI HSUAN |
Public Date | 2021-09-29 |