CVE-2024-21648 | XWiki xwiki-platform/xwiki-platform-oldcore Rollback Action insufficient privileges

Inserito da Angelo Barbosa | Gen 8, 2024 | CVE

A vulnerability, which was classified as critical, has been found in XWiki xwiki-platform and xwiki-platform-oldcore. Affected by this issue is some unknown functionality of the component Rollback Action Handler. The manipulation leads to improper handling of insufficient privileges.

This vulnerability is handled as CVE-2024-21648. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21648 | XWiki xwiki-platform/xwiki-platform-oldcore Rollback Action insufficient privileges

Post correlati

CVE-2024-0009 | Palo Alto PAN-OS/Prisma Access/Cloud NGFW VPN Connection unknown vulnerability

CVE-2024-41007 | Linux Kernel up to 4.18 TCP tcp_retransmit_timer resource consumption (97a9063518f1)

CVE-2023-6451 | AlayaCare Procura Portal up to 9.0.1.1 default key

CVE-2024-22626 | Complete Supplier Management System 1.0 edit_retailer.php id sql injection