CVE-2024-52872 | Flagsmith up to 2.134.0 get_document permission

Posted by Angelo Barbosa | Nov 17, 2024 | CVE

A vulnerability classified as critical has been found in Flagsmith up to 2.134.0. This affects the function get_document. The manipulation leads to permission issues.

This vulnerability is uniquely identified as CVE-2024-52872. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-52872 | Flagsmith up to 2.134.0 get_document permission

Related Posts

CVE-2024-44912 | NASA CryptoLib 1.3.0 TM Subsystem crypto_tm.c out-of-bounds

CVE-2024-37023 | Vonets VGA-1000 up to 3.3.23.6.9 os command injection (icsa-24-214-08)

CVE-2024-27982 | Node.js up to 18.20.0/20.12.0/21.7.2 Header Content-Length request smuggling

CVE-2024-26024 | Subnet Solutions Substation Server up to 2.23.10 reliance on uncontrolled component (icsa-24-128-02)