Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-cr9c-4pg9-32j3

Опубликовано: 17 дек. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 3.1

Описание

An improper handling of insufficient permissions or privileges affects HCL BigFix Inventory. An attacker having access via a read-only account can possibly change certain configuration parameters by crafting a specific REST API call.

An improper handling of insufficient permissions or privileges affects HCL BigFix Inventory. An attacker having access via a read-only account can possibly change certain configuration parameters by crafting a specific REST API call.

Ссылки

EPSS

Процентиль: 20%
0.00066
Низкий

3.1 Low

CVSS3

CVE ID

CVE-2024-42194

Дефекты

CWE-280

Связанные уязвимости

nvd логотип

CVE-2024-42194

CVSS3: 3.1
nvd
около 1 года назад

An improper handling of insufficient permissions or privileges affects HCL BigFix Inventory. An attacker having access via a read-only account can possibly change certain configuration parameters by crafting a specific REST API call.

EPSS

Процентиль: 20%
0.00066
Низкий

3.1 Low

CVSS3

CVE ID

CVE-2024-42194

Дефекты

CWE-280