CVE-2024-4146 | lunary-ai lunary up to 1.2.25 checkProjectAccess improper authorization

Posted by Angelo Barbosa | Jun 8, 2024 | CVE

A vulnerability was found in lunary-ai lunary up to 1.2.25. It has been declared as critical. Affected by this vulnerability is the function checkProjectAccess. The manipulation leads to improper authorization.

This vulnerability is known as CVE-2024-4146. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4146 | lunary-ai lunary up to 1.2.25 checkProjectAccess improper authorization

Related Posts

CVE-2024-6130 | 10Web Form Maker Plugin up to 1.15.25 on WordPress Setting cross site scripting

CVE-2024-1633 | Renesas rcar_gen3 2.5 Image bl2_mem_params_descs integer overflow

CVE-2024-43855 | Linux Kernel up to 6.1.102/6.6.43/6.10.2 md_submit_flush_data deadlock

CVE-2024-22121 | Zabbix up to 5.0.42/6.0.30/6.4.15/7.0.0rc2 Agent Application permissions