CVE-2024-21667 | Pimcore Customer Data Framework prior 4.0.6 GDPR Extract access control

Inserito da Angelo Barbosa | Gen 10, 2024 | CVE

A vulnerability, which was classified as critical, was found in Pimcore Customer Data Framework. This affects an unknown part of the component GDPR Extract Handler. The manipulation leads to improper access controls.

This vulnerability is uniquely identified as CVE-2024-21667. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21667 | Pimcore Customer Data Framework prior 4.0.6 GDPR Extract access control

Post correlati

CVE-2024-31446 | MightyPirates OpenComputers up to 1.8.3 allocation of resources

CVE-2024-5758 | wpxpo PostX Plugin up to 4.0.4 on WordPress filterMobileText cross site scripting

CVE-2024-28442 | Yealink VP59 91.15.0.118 Company Portal path traversal

CVE-2024-43313 | FormFacade Plugin up to 1.3.2 on WordPress cross site scripting