Problem Note 66004: SAS® Studio contains a broken access-control vulnerability in its file download capability
Severity: Medium
Description: A broken access-control vulnerability in SAS Studio allows a file download when the capability has been revoked.
Potential Impact: A user could perform file downloads when the capability has been revoked.
Click the Hot Fix tab in this note for a link to instructions about accessing and applying the software update.
Operating System and Release Information
SAS System | SAS Studio | Microsoft® Windows® for x64 | 5.2 | | Viya | |
SAS System | SAS Studio for Viya | Linux for x64 | 5.2 | 2020.1 | Viya | Viya platform |
*
For software releases that are not yet generally available, the Fixed
Release is the software release in which the problem is planned to be
fixed.
SAS Studio contains a broken access-control vulnerability in its file download capability
Type: | Problem Note |
Priority: | high |
Date Modified: | 2023-02-02 14:45:31 |
Date Created: | 2020-05-18 11:55:45 |