Privilege Escalation in Tryton Application Framework by Tryton
CVE-2012-0215

Currently unrated

Key Information:

Vendor

Tryton

Status
Trytond
Vendor
CVE Published:
12 July 2012

What is CVE-2012-0215?

The Tryton application framework prior to version 2.4.0 contains an improper access control vulnerability in model/modelstorage.py, specifically affecting the Many2Many field in the relation model. This flaw allows remote authenticated users to alter the user privileges of others through various remote procedure call (RPC) actions such as create, write, delete, or copy. This vulnerability can lead to unauthorized modification of user rights, potentially compromising the security of the affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.debian.org/security/2012/dsa-2444
vendor-advisoryx_refsource_DEBIAN
https://bugs.tryton.org/issue2476
x_refsource_CONFIRM
http://hg.tryton.org/trytond/rev/8e64d52ecea4
x_refsource_CONFIRM

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.