Security Advisory

CVE-2023-50448

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-28 00:00:00

Last updated 2024-08-02 22:16:46

Assigner mitre

State PUBLISHED

Description

In ActiveAdmin (aka Active Admin) before 2.12.0, a concurrency issue allows a malicious actor to access potentially private data (that belongs to another user) by making CSV export requests at certain specific times.

← Browse all CVEs View on cve.org ↗