CVE-2024-12235 | Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 1.0.0 AuthorizationTokenCheckFilter.java doFilter access control

A vulnerability was found in Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 1.0.0. It has been declared as critical. Affected by this vulnerability is the function doFilter of the file agile-bpm-basic-masterab-authab-auth-spring-security-oauth2srcmainjavacomdstzauthfilterAuthorizationTokenCheckFilter.java. The manipulation leads to improper access controls.

This vulnerability is known as CVE-2024-12235. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-12235 | Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 1.0.0 AuthorizationTokenCheckFilter.java doFilter access control

Post correlati

CVE-2024-22268 | VMware Workstation/Fusion Shader denial of service

CVE-2023-48114 | SmarterTools SmarterMail prior 16.x Build 8747 SVG Document unrestricted upload

CVE-2024-8080 | SourceCodester Online Health Care System 1.0 search.php f_name sql injection

CVE-2024-38680 | Appmaker Plugin up to 1.36.12 on WordPress cross site scripting