Ibexa: >> Ez Platform Security Vulnerabilities
Incorrect access control in the REST API of Ibexa & Ciril GROUP eZ Platform / Ciril Platform 2.x allows unauthenticated attackers to access sensitive data via enumerating object IDs.
CVSS Score
7.5
EPSS Score
0.003
Published
2026-03-06
An issue was discovered in eZ Platform Ibexa Kernel before 1.3.19. It allows determining account existence via a timing attack.
CVSS Score
3.7
EPSS Score
0.005
Published
2023-03-12
An issue was discovered in eZ Platform Ibexa Kernel before 1.3.26. The Company admin role gives excessive privileges.
CVSS Score
7.2
EPSS Score
0.009
Published
2023-03-12