{"id":"CVE-2019-12967","details":"Stephan Mooltipass Moolticute through 0.42.1 (and possibly earlier versions) has Incorrect Access Control.","modified":"2026-04-11T16:44:37.092906Z","published":"2019-10-22T15:15:10.397Z","references":[{"type":"FIX","url":"https://github.com/mooltipass/moolticute/commits/master"},{"type":"EVIDENCE","url":"https://securiteam.io/2019/10/20/cve-2019-12967-moolticute-improper-access-control/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mooltipass/moolticute","events":[{"introduced":"0"},{"last_affected":"634ce5435e9ba1f72069298d33e2f19fe3a2d470"}],"database_specific":{"cpe":"cpe:2.3:a:themooltipass:moolticute:*:*:*:*:*:*:*:*","extracted_events":[{"introduced":"0"},{"last_affected":"0.42.1"}],"source":"CPE_FIELD"}}],"versions":["0.1","0.2","0.3","0.4","0.4.1","0.4.2","v0.1-alpha","v0.1.1-alpha","v0.1.10-alpha","v0.1.11-alpha","v0.1.12-alpha","v0.1.13-alpha","v0.1.14-alpha","v0.1.15-alpha","v0.1.16-alpha","v0.1.17-alpha","v0.1.18-alpha","v0.1.19-alpha","v0.1.2-alpha","v0.1.20-alpha","v0.1.21-alpha","v0.1.22-alpha","v0.1.23-alpha","v0.1.24-alpha","v0.1.3-alpha","v0.1.4-alpha","v0.1.6-alpha","v0.1.7-alpha","v0.1.8-alpha","v0.1.9-alpha","v0.10.0-beta","v0.11.0-beta","v0.11.1-beta","v0.11.10-beta","v0.11.11-beta","v0.11.2-beta","v0.11.3-beta","v0.11.4-beta","v0.11.5-beta","v0.11.6-beta","v0.11.7-beta","v0.11.8-beta","v0.11.9-beta","v0.12.0","v0.12.1","v0.12.10","v0.12.11","v0.12.2","v0.12.3","v0.12.4","v0.12.5","v0.12.6","v0.12.7","v0.12.8","v0.12.9","v0.13-testing","v0.14-testing","v0.15-testing","v0.17-testing","v0.17.2-testing","v0.17.3-testing","v0.17.5-testing","v0.17.6-testing","v0.18.0","v0.18.1","v0.18.2-testing","v0.18.3-testing","v0.18.4-testing","v0.18.5-testing","v0.18.6-testing","v0.18.7","v0.18.8-testing","v0.18.9-testing","v0.19.0-testing","v0.19.1-testing","v0.2.0-alpha","v0.2.1-alpha","v0.2.2-alpha","v0.2.3-alpha","v0.20.0","v0.20.0-testing","v0.20.1","v0.20.2","v0.20.2-testing","v0.21.0","v0.21.0-testing","v0.21.1-testing","v0.21.10-testing","v0.21.11-testing","v0.21.2-testing","v0.21.3-testing","v0.21.4-testing","v0.21.5-testing","v0.21.6-testing","v0.21.7-testing","v0.21.8-testing","v0.21.9-testing","v0.3.0-alpha","v0.30.0","v0.30.0-testing","v0.30.1","v0.30.1-testing","v0.30.10-testing","v0.30.11-testing","v0.30.2-testing","v0.30.3-testing","v0.30.4","v0.30.4-testing","v0.30.5-testing","v0.30.6-testing","v0.30.7","v0.30.7-testing","v0.30.8","v0.30.9-testing","v0.4.0-beta","v0.4.1-beta","v0.4.2-beta","v0.40.0-testing","v0.40.1-testing","v0.40.2-testing","v0.40.3-testing","v0.41.0-testing","v0.41.1-testing","v0.41.2-testing","v0.41.3-testing","v0.41.4","v0.41.5","v0.41.6-testing","v0.41.7-testing","v0.41.8-testing","v0.41.9-testing","v0.42.1","v0.5.0-beta","v0.5.1-beta","v0.5.2-beta","v0.5.3-beta","v0.5.4-beta","v0.5.5-beta","v0.6.0-beta","v0.6.1-beta","v0.6.2-beta","v0.7.0-beta","v0.7.1-beta","v0.7.2-beta","v0.8.0-beta","v0.9.0-beta","v0.9.1-beta","v0.9.10-beta","v0.9.11-beta","v0.9.12-beta","v0.9.13-beta","v0.9.14-beta","v0.9.15-beta","v0.9.16-beta","v0.9.17-beta","v0.9.19-beta","v0.9.2-beta","v0.9.20-beta","v0.9.21-beta","v0.9.3-beta","v0.9.4-beta","v0.9.5-beta","v0.9.6-beta","v0.9.7-beta","v0.9.8-beta","v0.9.9-beta"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-12967.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}]}