{"id":"CVE-2019-12887","details":"KeyIdentity LinOTP before 2.10.5.3 has Incorrect Access Control (issue 1 of 2).","aliases":["GHSA-rqg8-xjp2-pg9w","PYSEC-2019-103"],"modified":"2026-04-11T21:44:45.898539Z","published":"2019-06-27T14:15:10.457Z","references":[{"type":"ADVISORY","url":"https://www.linotp.org/CVE-2019-12887.txt"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/linotp/linotp","events":[{"introduced":"0"},{"fixed":"84374c6001e90962aaa92fee533d9a7aaf656878"}],"database_specific":{"cpe":"cpe:2.3:a:keyidentity:linotp:*:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"fixed":"2.10.5.3"}]}}],"versions":["dev/2.10.1rc0","dev/2.9rc0","dev/2.9rc1","dev/2.9rc2","release/2.10.1","release/2.10.4","release/2.10.5.1","release/2.10.5.2","release/2.9"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-12887.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}