CVE-2024-47651 in Client Dashboardinfo

Zusammenfassung

von MITRE • 04.10.2024

This vulnerability exists in Shilpi Client Dashboard due to improper handling of multiple parameters in the API endpoint. An authenticated remote attacker could exploit this vulnerability by including multiple “userid” parameters in the API request body leading to unauthorized access of sensitive information belonging to other users.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Zuständig

CERT-In

Reservieren

30.09.2024

Veröffentlichung

04.10.2024

Moderieren

akzeptiert

Eintrag

VDB-279216

CPE

bereit

EPSS

0.00426

KEV

nein

Aktivitäten

very low

Quellen

Do you want to use VulDB in your project?

Use the official API to access entries easily!