CVE-2024-51560 in Wave 2.0informazioni

Riassunto

di MITRE • 04/11/2024

This vulnerability exists in the Wave 2.0 due to improper exception handling for invalid inputs at certain API endpoint. An authenticated remote attacker could exploit this vulnerability by providing invalid inputs for “userId” parameter in the API request leading to generation of error message containing sensitive information on the targeted system.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsabile

CERT-In

Prenotare

29/10/2024

Divulgazione

04/11/2024

Moderazione

accettato

CPE

pronto

EPSS

0.00343

KEV

no

Attività

molto basso

Fonti

Might our Artificial Intelligence support you?

Check our Alexa App!