CVE-2024-38291 | XIQ-SE up to 24.2.10 Admin Password Privilege Escalation

Inserito da Angelo Barbosa | Feb 28, 2025 | CVE

A vulnerability was found in XIQ-SE up to 24.2.10. It has been classified as problematic. Affected is an unknown function of the component Admin Password Handler. The manipulation leads to Privilege Escalation.

This vulnerability is traded as CVE-2024-38291. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38291 | XIQ-SE up to 24.2.10 Admin Password Privilege Escalation

Post correlati

CVE-2024-6952 | itsourcecode University Management System 1.0 view_single_result.php seme sql injection

CVE-2024-33579 | Lenovo Baiying up to 1.x uncontrolled search path

CVE-2024-5902 | UserFeedback Lite Plugin up to 1.0.15 on WordPress Name cross site scripting

CVE-2024-10134 | ESAFENET CDG 5 MultiServerAjax.java connectLogout servername sql injection