ГлавнаяУязвимости → CVE-2025-64487
7.6высокая

CVE-2025-64487

Описание

Outline is a service that allows for collaborative documentation. Prior to 1.1.0, a privilege escalation vulnerability exists in the Outline document management system due to inconsistent authorization checks between user and group membership management endpoints. This vulnerability is fixed in 1.1.0.

Затрагиваемое ПО
Getoutline Outline
CVSS
Балл7.6 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N
Источники
https://github.com/outline/outline/releases/tag/v1.1.0https://github.com/outline/outline/security/advisories/GHSA-c8xf-3j86-7686