CVE-2024-55470 | Oqtane Framework 6.0.0 Passcode Validation entityid access control

Inserito da Angelo Barbosa | Dic 20, 2024 | CVE

A vulnerability classified as critical has been found in Oqtane Framework 6.0.0. Affected is an unknown function of the component Passcode Validation. The manipulation of the argument entityid leads to improper access controls.

This vulnerability is traded as CVE-2024-55470. Access to the local network is required for this attack. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-55470 | Oqtane Framework 6.0.0 Passcode Validation entityid access control

Post correlati

CVE-2024-30047 | Microsoft Dynamics 365 Customer Insights cross site scripting

CVE-2023-47074 | Adobe Illustrator 2023/Illustrator 2024 up to 27.9.0/28.0 out-of-bounds (apsb23-68)

CVE-2024-21502 | fastecdsa up to 2.3.1 src/curveMath.c curvemath_mul uninitialized variable

CVE-2024-1338 | ImageRecycle PDF & Image Compression Plugin up to 3.1.13 on WordPress Setting stopOptimizeAll cross-site request forgery