CVE-2024-22206 | clerk javascript up to 4.29.2 auth/getAuth authorization (GHSA-q6w5-jg5q-47vg)

Posted by Angelo Barbosa | Jan 12, 2024 | CVE

A vulnerability classified as problematic was found in clerk javascript up to 4.29.2. This vulnerability affects the function auth/getAuth. The manipulation leads to authorization bypass.

This vulnerability was named CVE-2024-22206. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-22206 | clerk javascript up to 4.29.2 auth/getAuth authorization (GHSA-q6w5-jg5q-47vg)

Related Posts

CVE-2024-7061 | Okta Verify 5.0.0/5.0.1 on Windows path traversal

CVE-2024-0530 | CXBSoft Post-Office up to 1.0 HTTP POST Request /apps/reg_go.php username_reg sql injection

CVE-2024-7410 | My Custom CSS PHP & ADS Plugin up to 3.3 on WordPress information disclosure

CVE-2024-28576 | FreeImage 3.19.0 r1909 J2K Image opj_j2k_tcp_destroy buffer overflow