CVE-2024-8042 | Rapid7 Insight Platform up to 20240813 name/description authorization

Inserito da Angelo Barbosa | Set 9, 2024 | CVE

A vulnerability was found in Rapid7 Insight Platform up to 20240813 and classified as problematic. This issue affects some unknown processing. The manipulation of the argument name/description leads to missing authorization.

The identification of this vulnerability is CVE-2024-8042. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8042 | Rapid7 Insight Platform up to 20240813 name/description authorization

Post correlati

CVE-2023-34385 | Akshay Menariya Export Import Menus Plugin up to 1.8.0 on WordPress unrestricted upload

CVE-2024-0431 | Gestpay for WooCommerce Plugin up to 20221130 on WordPress ajax_set_default_card cross-site request forgery

CVE-2024-25630 | Cilium up to 1.14.6 CRD missing encryption (GHSA-7496-fgv9-xw82)

CVE-2022-28975 | Infoblox NIOS 8.5.2-409296 VLAN View Name cross site scripting