CVE-2024-36112 | Nautobot prior 1.6.23/2.2.5 /extras/dynamic-groups/ insufficient permissions or privileges (GHSA-qmjf-wc2h-6x3q)

Inserito da Angelo Barbosa | Mag 29, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Nautobot. Affected by this issue is some unknown functionality of the file /extras/dynamic-groups/. The manipulation leads to improper handling of insufficient permissions or privileges.

This vulnerability is handled as CVE-2024-36112. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36112 | Nautobot prior 1.6.23/2.2.5 /extras/dynamic-groups/ insufficient permissions or privileges (GHSA-qmjf-wc2h-6x3q)

Post correlati

CVE-2024-6856 | WP MultiTasking Plugin up to 0.1.12 on WordPress SMTP Setting cross-site request forgery

CVE-2024-29156 | OpenStack Murano up to 16.0.0 YAQL information disclosure

CVE-2024-22022 | Veeam Recovery Orchestrator/Availability Orchestrator access control

CVE-2023-6349 | Google Chromium libvpx up to 1.13.0 VP9 heap-based overflow