CVE-2024-41709 | Backdrop CMS up to 1.27.2/1.28.1 Field Label permission

Inserito da Angelo Barbosa | Lug 22, 2024 | CVE

A vulnerability classified as critical was found in Backdrop CMS up to 1.27.2/1.28.1. Affected by this vulnerability is an unknown functionality of the component Field Label Handler. The manipulation leads to permission issues.

This vulnerability is known as CVE-2024-41709. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41709 | Backdrop CMS up to 1.27.2/1.28.1 Field Label permission

Post correlati

CVE-2023-52495 | Linux Kernel up to 6.6.14/6.7.2 qcom pmic_glink_altmode memory corruption (532a5557da68/d26edf4ee367/c4fb7d2eac9f)

CVE-2023-38619 | GTKWave 3.3.115 VZT integer overflow (TALOS-2023-1812)

CVE-2024-20750 | Adobe Substance 3D Designer up to 13.1.0 out-of-bounds (apsb24-13)

CVE-2024-40953 | Linux Kernel up to 6.1.95/6.6.35/6.9.6 kvm_vcpu_on_spin out-of-bounds