GHSA-6w93-crhf-283q
GitHub Security Advisory
⚠ Unreviewed
HIGH
Has CVE
Advisory Details
Lua apps can be deployed, removed, started, reloaded or stopped without authorization via
AppManager. This allows an attacker to remove legitimate apps creating a DoS attack, read and write
files or load apps that use all features of the product available to a customer.
Related CVEs
Key Information
7.5
/10
Dataset
Last updated: November 25, 2025 6:29 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.