CVE-2024-48987 | Snipe-IT up to 7.0.9 APP_KEY Privilege Escalation

Inserito da Angelo Barbosa | Ott 11, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Snipe-IT up to 7.0.9. Affected by this issue is some unknown functionality. The manipulation of the argument APP_KEY leads to Privilege Escalation.

This vulnerability is handled as CVE-2024-48987. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-48987 | Snipe-IT up to 7.0.9 APP_KEY Privilege Escalation

Post correlati

CVE-2024-25960 | Dell PowerScale OneFS up to 9.3.0.0/9.4.0.16/9.5.0.7/9.7.0.1 cleartext transmission (dsa-2024-115)

CVE-2024-24571 | WillyXJ facileManager up to 4.5.0 cross site scripting (GHSA-h7w3-xv88-2xqj)

CVE-2024-45750 | TheGreenBow Windows Standard VPN Client IKEv2 Authentication improper authentication

CVE-2024-46045 | Tenda CH22 1.0.0.6(468) /goform/frmL7ProtForm frmL7PlotForm page stack-based overflow