CVE-2024-29200 | Kimai up to 2.12.x API insufficient granularity of access control

Inserito da Angelo Barbosa | Mar 28, 2024 | CVE

A vulnerability was found in Kimai up to 2.12.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component API. The manipulation leads to insufficient granularity of access control.

This vulnerability is known as CVE-2024-29200. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29200 | Kimai up to 2.12.x API insufficient granularity of access control

Post correlati

CVE-2024-6086 | lunary-ai lunary up to 1.2.7 checkAccess access control

CVE-2024-10130 | Tenda AC8 16.03.34.06 SetSysAutoRebbotCfg formSetRebootTimer rebootTime stack-based overflow

CVE-2024-5071 | Bookster Plugin up to 1.1.0 on WordPress Appointment authorization

CVE-2024-40038 | idcCMS 1.35 userScore_deal.php cross-site request forgery