Improper access control in Key-Value RBAC in StackStorm version 3.7.0 didn't check the permissions in Jinja filters, allowing malicious users to access K/V pairs of other users, potentially leading to the exposure of sensitive Information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
stackstorm stackstorm 3.7.0 |