CVE-2024-36532 | kruise 1.6.2 Service Account Token permission

Posted by Angelo Barbosa | Jun 22, 2024 | CVE

A vulnerability was found in kruise 1.6.2. It has been rated as critical. Affected by this issue is some unknown functionality of the component Service Account Token Handler. The manipulation leads to permission issues.

This vulnerability is handled as CVE-2024-36532. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-36532 | kruise 1.6.2 Service Account Token permission

Related Posts

CVE-2024-7683 | SourceCodester Kortex Lite Advocate Office Management System 1.0 addcase_stage.php cname cross site scripting

CVE-2024-0730 | Project Worlds Online Time Table Generator 1.0 course_ajax.php id sql injection

CVE-2024-44798 | PHPGurukul Bus Pass Management System 1.0 pass-bwdates-reports-details.php fromdate/todate cross site scripting

CVE-2023-7035 | automad up to 1.10.9 Setting post.php sitename cross site scripting