CVE-2024-40408 | Cybele Software Thinfinity Workspace prior 7.0.2.113 Create Profile Section access control

Posted by Angelo Barbosa | Nov 14, 2024 | CVE

A vulnerability, which was classified as critical, was found in Cybele Software Thinfinity Workspace. This affects an unknown part of the component Create Profile Section. The manipulation leads to improper access controls.

This vulnerability is uniquely identified as CVE-2024-40408. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-40408 | Cybele Software Thinfinity Workspace prior 7.0.2.113 Create Profile Section access control

Related Posts

CVE-2023-47784 | ThemePunch OHG Slider Revolution Plugin up to 6.6.15 on WordPress unrestricted upload

CVE-2024-5907 | Palo Alto Networks Cortex XDR Agent up to 8.1.0/8.2.2 on Windows privileges management

CVE-2024-1239 | ElementsKit Elementor Addons Plugin up to 3.0.4 on WordPress cross site scripting

CVE-2024-23588 | HCL Nomad Server up to 1.0.11 on Domino denial of service (KB0114193)