CVE-2024-4151 | lunary-ai lunary up to 1.2.2 PATCH Request access control

Posted by Angelo Barbosa | May 20, 2024 | CVE

A vulnerability has been found in lunary-ai lunary up to 1.2.2 and classified as critical. This vulnerability affects unknown code of the component PATCH Request Handler. The manipulation leads to improper access controls.

This vulnerability was named CVE-2024-4151. The attack can be initiated remotely. There is no exploit available.

CVE-2024-4151 | lunary-ai lunary up to 1.2.2 PATCH Request access control

Related Posts

CVE-2023-20257 | Cisco Evolved Programmable Network Manager Web-based Management Interface cross site scripting (cisco-sa-pi-epnm-wkZJeyeq)

CVE-2022-4963 | Folio Spring Module Core up to 1.1.5 Schema Name HibernateSchemaService.java dropSchema sql injection (FOLIO-3645)

CVE-2024-24189 | Jsish/commit 3.5.0 /src/jsiUtils.c SplitChar use after free

CVE-2023-6671 | OJS Open Journal Systems 3.3.0.13 cross-site request forgery