CVE-2024-29194 | OneUptime 7.0.1803 is_master_admin authorization (GHSA-246p-xmg8-wmcq)

Inserito da Angelo Barbosa | Mar 24, 2024 | CVE

A vulnerability was found in OneUptime 7.0.1803. It has been classified as critical. This affects an unknown part. The manipulation of the argument is_master_admin leads to authorization bypass.

This vulnerability is uniquely identified as CVE-2024-29194. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29194 | OneUptime 7.0.1803 is_master_admin authorization (GHSA-246p-xmg8-wmcq)

Post correlati

CVE-2022-48944 | Linux Kernel up to 5.15.26/5.16.12 sched_fork Privilege Escalation (3411613611a5/c65cfd89cef6/b1e8206582f9)

CVE-2024-28736 | Debezium UI 2.5 Refresh Page Local Privilege Escalation (ID 178794)

CVE-2022-48691 | Linux Kernel up to 5.10.142/5.15.67/5.19.8 include/linux/slab.h nft_chain_release_hook memory leak

VDB-263593 | Campcodes Complete Web-Based School Management System 1.0 show_student_subject.php id cross site scripting