HomePhabricator
Phame Blogs 12 October 2020 Security Incident
12 October 2020 Security Incident
A summary and Incident report

Summary

Written by RhinosF1 on Mon, Oct 12, 8:54 PM.

At 18:40 UK time 12 October 2020, A malicious user exploited a security bug (T117: [CVE-2020-15251] makemodechange failed to check access on restricted changes for self actions allowing ACL bypass {Version 9.0.0 - 9.0.2}) on our production channel in front of us.

Read more...
About 12 October 2020 Security Incident
No description.