CVE-2024-10452 | Grafana 10.4.0 Pending Invite authorization

Inserito da Angelo Barbosa | Ott 29, 2024 | CVE

A vulnerability has been found in Grafana 10.4.0 and classified as problematic. This vulnerability affects unknown code of the component Pending Invite Handler. The manipulation leads to authorization bypass.

This vulnerability was named CVE-2024-10452. The attack can be initiated remotely. There is no exploit available.

CVE-2024-10452 | Grafana 10.4.0 Pending Invite authorization

Post correlati

CVE-2024-0469 | code-projects Human Resource Integrated System 1.0 update_personal_info.php sex sql injection

CVE-2024-22359 | IBM UrbanCode Deploy/DevOps Deploy Web UI cross site scripting (XFDB-280897)

CVE-2024-43460 | Microsoft Dynamics 365 Business Central Online improper authorization

CVE-2024-32040 | FreeRDP up to 2.11.5/3.4.x NSC Codec integer underflow (GHSA-23c5-cp23-h2h5)