VulnerableCode Vulnerability Details - VCID-5buq-dxsm-t3b9

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-5buq-dxsm-t3b9

Essentials
Severities (5)
References (3)
Severity details (5)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-5buq-dxsm-t3b9
Aliases	GHSA-w8qp-hmh5-4v9v GMS-2022-1044
Summary	Object state limitation has no effect
Status	Published
Exploitability	0.5
Weighted Severity	9.0
Risk	4.5
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-281	Improper Preservation of Permissions
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	CRITICAL	https://developers.ibexa.co/security-advisories/ibexa-sa-2022-004-ineffective-object-state-limitation-and-unauthenticated-fastly-purge
cvssv3.1_qr	CRITICAL	https://github.com/advisories/GHSA-w8qp-hmh5-4v9v
generic_textual	CRITICAL	https://github.com/ezsystems/ezplatform-kernel
cvssv3.1_qr	CRITICAL	https://github.com/ezsystems/ezplatform-kernel/security/advisories/GHSA-w8qp-hmh5-4v9v
generic_textual	CRITICAL	https://github.com/ezsystems/ezplatform-kernel/security/advisories/GHSA-w8qp-hmh5-4v9v

Reference id	Reference type	URL
		https://github.com/ezsystems/ezplatform-kernel
GHSA-w8qp-hmh5-4v9v		https://github.com/advisories/GHSA-w8qp-hmh5-4v9v
GHSA-w8qp-hmh5-4v9v		https://github.com/ezsystems/ezplatform-kernel/security/advisories/GHSA-w8qp-hmh5-4v9v

No exploits are available.

No EPSS data available for this vulnerability.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-11T20:28:54.271164+00:00	GHSA Importer	Import	https://github.com/advisories/GHSA-w8qp-hmh5-4v9v	38.6.0