Description
PROMS 0.11 does not properly handle "certain combinations of rights," which gives more rights to users than intended.
Product(s):
- Electric Monk Proms
- Electric Monk Proms 0.10
- Electric Monk Proms 0.6.1
- Electric Monk Proms 0.6
- Electric Monk PROMS 0.7
- Electric Monk PROMS 0.8
- Electric Monk PROMS 0.9
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2005-1736, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2005-1736 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.