Accessing/Editing Folders of Other Users in the Orginisation.
High
L
Lark Technologies
Submitted None
Team Summary
Official summary from Lark Technologies
A vulnerability was found where users without Primary admin privileges were able to view/modify the directory structure of other users in their organization. This would occur after those users were invited to view/modify their folders by a Primary admin. We thank @snapsec for reporting this to our team.
Actions:
Reported by
imran0x01
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Improper Access Control - Generic