CVE-2022-34621 is a medium-severity Authorization Bypass Through User-Controlled Key (CWE-639) vulnerability in Mealie Mealie. Its CVSS base score is 6.5 (Medium).
Operationally, ranked in the top 39.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Mealie 1.0.0beta3 was discovered to contain an Insecure Direct Object Reference (IDOR) vulnerability which allows attackers to modify user passwords and other attributes via modification of the user_id parameter.