CVE-2024-36112 | Nautobot prior 1.6.23/2.2.5 /extras/dynamic-groups/ insufficient permissions or privileges (GHSA-qmjf-wc2h-6x3q)

Inserito da Angelo Barbosa | Mag 29, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Nautobot. Affected by this issue is some unknown functionality of the file /extras/dynamic-groups/. The manipulation leads to improper handling of insufficient permissions or privileges.

This vulnerability is handled as CVE-2024-36112. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36112 | Nautobot prior 1.6.23/2.2.5 /extras/dynamic-groups/ insufficient permissions or privileges (GHSA-qmjf-wc2h-6x3q)

Post correlati

CVE-2023-42503 | Oracle Utilities Network Management System 2.6.0.1 NMS Monitor denial of service

CVE-2023-49406 | Tenda W30E 16.01.0.12 /goform/telnet Privilege Escalation

CVE-2020-11847 | OpenText Privileged Access Manager up to 3.7.0.0 PAM Server os command injection

CVE-2024-9898 | Parallax Image Plugin up to 1.8 on WordPress Shortcode dd-parallax cross site scripting