CVE-2024-5129 | lunary-ai lunary up to 1.2.7 Delete Request authorization

Inserito da Angelo Barbosa | Giu 6, 2024 | CVE

A vulnerability was found in lunary-ai lunary up to 1.2.7. It has been classified as critical. Affected is an unknown function of the component Delete Request Handler. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2024-5129. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5129 | lunary-ai lunary up to 1.2.7 Delete Request authorization

Post correlati

CVE-2023-34061 | Cloud Foundry Routing Release/CF Deployment denial of service

CVE-2024-39326 | National Security Agency skills-service up to 2.12.5 video cross-site request forgery

CVE-2024-7485 | Traffic Manager Plugin up to 1.4.5 on WordPress cross site scripting

CVE-2023-48258 | Rexroth Nexo Cordless Nutrunner up to V1500-SP2 URL cross-site request forgery