exploitDog

CVE-2024-53573

Опубликовано: 26 фев. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Unifiedtransform v2.X is vulnerable to Incorrect Access Control. Unauthorized users can access and manipulate endpoints intended exclusively for administrative use. This issue specifically affects teacher/edit/{id}.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:changeweb:unifiedtransform:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 38%

0.00166

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-284

Связанные уязвимости

GHSA-7xmw-644w-wp3m

CVSS3: 9.8

github

12 месяцев назад

Unifiedtransform v2.X is vulnerable to Incorrect Access Control. Unauthorized users can access and manipulate endpoints intended exclusively for administrative use. This issue specifically affects teacher/edit/{id}.

EPSS

Процентиль: 38%

0.00166

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-284