exploitDog

CVE-2024-55585

Опубликовано: 07 июн. 2025

Источник: nvd

EPSS Низкий

Описание

In the moPS App through 1.8.618, all users can access administrative API endpoints without additional authentication, resulting in unrestricted read and write access, as demonstrated by /api/v1/users/resetpassword.

Ссылки

EPSS

Процентиль: 27%

0.00094

Низкий

Дефекты

CWE-306

Связанные уязвимости

GHSA-7mg4-gj65-xwc3

github

8 месяцев назад

In the moPS App through 1.8.618, all users can access administrative API endpoints without additional authentication, resulting in unrestricted read and write access, as demonstrated by /api/v1/users/resetpassword.

EPSS

Процентиль: 27%

0.00094

Низкий

Дефекты

CWE-306