Количество 3
Количество 3
CVE-2024-23637
OctoPrint is a web interface for 3D printer.s OctoPrint versions up until and including 1.9.3 contain a vulnerability that allows malicious admins to change the password of other admin accounts, including their own, without having to repeat their password. An attacker who managed to hijack an admin account might use this to lock out actual admins from their OctoPrint instance. The vulnerability will be patched in version 1.10.0.
CVE-2024-23637
OctoPrint is a web interface for 3D printer.s OctoPrint versions up un ...
GHSA-5626-pw9c-hmjr
OctoPrint Unverified Password Change via Access Control Settings
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-23637 OctoPrint is a web interface for 3D printer.s OctoPrint versions up until and including 1.9.3 contain a vulnerability that allows malicious admins to change the password of other admin accounts, including their own, without having to repeat their password. An attacker who managed to hijack an admin account might use this to lock out actual admins from their OctoPrint instance. The vulnerability will be patched in version 1.10.0. | CVSS3: 4.2 | 0% Низкий | около 2 лет назад |
| CVE-2024-23637 OctoPrint is a web interface for 3D printer.s OctoPrint versions up un ... | CVSS3: 4.2 | 0% Низкий | около 2 лет назад |
| GHSA-5626-pw9c-hmjr OctoPrint Unverified Password Change via Access Control Settings | CVSS3: 4.2 | 0% Низкий | около 2 лет назад |
Уязвимостей на страницу