CVE-2024-10620 | knightliao Disconf 2.6.36 Configuration Center /api/config/list improper authentication

Posted by Angelo Barbosa | Oct 31, 2024 | CVE

A vulnerability was found in knightliao Disconf 2.6.36. It has been classified as critical. This affects an unknown part of the file /api/config/list of the component Configuration Center. The manipulation leads to improper authentication.

This vulnerability is uniquely identified as CVE-2024-10620. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-10620 | knightliao Disconf 2.6.36 Configuration Center /api/config/list improper authentication

Related Posts

CVE-2024-33023 | Qualcomm Snapdragon Auto up to XR2 5G Platform Fence use after free

CVE-2023-52616 | Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.14/6.7.2 crypto lib/mpi mpi_ec_init initialization

CVE-2024-43907 | Linux Kernel up to 5.10.223/5.15.164/6.1.104/6.6.45/6.10.4 AMD GPU apply_state_adjust_rules null pointer dereference

CVE-2024-3674 | Inline Google Spreadsheet Viewer Plugin up to 0.13.2 on WordPress Shortcode cross site scripting