Описание
An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup was exposed, allowing unauthenticated attackers to bypass CSRF protections and authentication.
An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup was exposed, allowing unauthenticated attackers to bypass CSRF protections and authentication.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2024-48950
- https://docs.logpoint.com/docs/whats-new-in-logpoint/en/latest
- https://servicedesk.logpoint.com/hc/en-us/articles/21968264954525-Authentication-and-CSRF-bypass-leading-to-unauthorized-access
- https://servicedesk.logpoint.com/hc/en-us/sections/7201103730845-Product-Security
Связанные уязвимости
CVSS3: 7.5
nvd
больше 1 года назад
An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup was exposed, allowing unauthenticated attackers to bypass CSRF protections and authentication.