Attacker is able to join any tenant on larksuite and view personal files/chats.

Disclosed: 2021-11-03 21:32:22 By imran_nisar To lark_technologies
Critical
Vulnerability Details
No vulnerability description provided or it is restricted.
Actions
View on HackerOne
Report Stats
  • Report ID: 1363185
  • State: Closed
  • Substate: resolved
  • Upvotes: 82
Share this report