CVE-2024-55471

Published: Dec 20, 2024

Modified: Dec 20, 2024

PUBLISHED

Description

Oqtane Framework is vulnerable to Insecure Direct Object Reference (IDOR) in Oqtane.Controllers.UserController. This allows unauthorized users to access sensitive information of other users by manipulating the id parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/oqtane/oqtane.framework/pull/4880/files

https://medium.com/@Rudra_2158/cve-2024-55471-breaking-down-the-idor-vulnerability-in-oqtane-framework-c0f4b02f12fc

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-55471

Description

Affected Products

References