CVE-2024-46937 | MFASOFT Secure Authentication Server prior 1.9.040924 get-info-token-properties serial access control

Inserito da Angelo Barbosa | Set 16, 2024 | CVE

A vulnerability has been found in MFASOFT Secure Authentication Server and classified as critical. This vulnerability affects unknown code of the file /api-selfportal/get-info-token-properties. The manipulation of the argument serial leads to improper access controls.

This vulnerability was named CVE-2024-46937. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-46937 | MFASOFT Secure Authentication Server prior 1.9.040924 get-info-token-properties serial access control

Post correlati

CVE-2024-27972 | Very Good Plugins WP Fusion Lite Plugin up to 3.41.24 on WordPress command injection

CVE-2024-5673 | Dulldusk PHP File Manager 1.7.8 index.php fm_current_dir cross site scripting

CVE-2024-32860 | Dell CPG BIOS prior 2.18.0 input validation (dsa-2024-125)

CVE-2024-28761 | IBM App Connect Enterprise up to 11.0.0.25/12.0.12.0 cross site scripting (XFDB-285245)