CVE-2024-22206 | clerk javascript up to 4.29.2 auth/getAuth authorization (GHSA-q6w5-jg5q-47vg)

Inserito da Angelo Barbosa | Gen 12, 2024 | CVE

A vulnerability classified as problematic was found in clerk javascript up to 4.29.2. This vulnerability affects the function auth/getAuth. The manipulation leads to authorization bypass.

This vulnerability was named CVE-2024-22206. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-22206 | clerk javascript up to 4.29.2 auth/getAuth authorization (GHSA-q6w5-jg5q-47vg)

Post correlati

CVE-2024-37741 | OpenPLC up to 9cd8f1b Profile Picture cross site scripting (Issue 242)

CVE-2023-41613 | EzViz Studio 2.2.0 uncontrolled search path (ID 175684)

CVE-2024-21512 | mysql2 up to 3.9.7 Field nestTables prototype pollution (SNYK-JS-MYSQL2-6861580)

CVE-2024-29853 | Veeam Agent prior 6.1.2.134 on Microsoft improper authentication