CVE-2024-53258 | Autolab download_all_submissions exposure of private personal information to an unauthorized actor (1aa4c769)

Inserito da Angelo Barbosa | Nov 25, 2024 | CVE

A vulnerability has been found in Autolab and classified as problematic. Affected by this vulnerability is the function download_all_submissions. The manipulation leads to exposure of private personal information to an unauthorized actor.

This vulnerability is known as CVE-2024-53258. The attack can be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-53258 | Autolab download_all_submissions exposure of private personal information to an unauthorized actor (1aa4c769)

Post correlati

CVE-2024-8564 | SourceCodester PHP CRUD 1.0 /endpoint/update.php tbl_person_id/first_name/middle_name/last_name sql injection

CVE-2024-45245 | Diebold Nixdorf Vynamic View up to 5.9.4 information disclosure

CVE-2024-24815 | CKeditor4 up to 4.23.x HTML Parsing Module cross site scripting (GHSA-fq6h-4g8v-qqvm)

CVE-2024-47651 | Shilpi Computers Client Dashboard prior 9.7.0 API Endpoint parameter pollution (CIVN-2024-0313)