CVE-2024-40408 | Cybele Software Thinfinity Workspace prior 7.0.2.113 Create Profile Section access control

Posted by Angelo Barbosa | Nov 14, 2024 | CVE

A vulnerability, which was classified as critical, was found in Cybele Software Thinfinity Workspace. This affects an unknown part of the component Create Profile Section. The manipulation leads to improper access controls.

This vulnerability is uniquely identified as CVE-2024-40408. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-40408 | Cybele Software Thinfinity Workspace prior 7.0.2.113 Create Profile Section access control

Related Posts

CVE-2024-29828 | Ivanti Endpoint Manager GetRulesetsSQL sql injection

CVE-2024-7084 | Ernest Marcinko Ajax Search Lite Plugin up to 4.12.0 on WordPress cross site scripting

VDB-247052 | Google Go up to 1.20.11/1.21.4 cmd-go cleartext transmission

CVE-2024-29945 | Splunk Enterprise up to 9.0.8/9.1.3/9.2.0 JsonWebToken Component log file (SVD-2024-0301)