How severe is CVE-2024-51556?

CVE-2024-51556 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2024-51556

Name: wave_2.0
Author: 63moons

6.5MEDIUM

This vulnerability exists in the Wave 2.0 due to insufficient encryption of sensitive data received at the API response. An authenticated remote attacker could exploit this vulnerability by manipulati

Veröffentlicht: 11/4/2024Aktualisiert: 11/22/2024

Beschreibung

This vulnerability exists in the Wave 2.0 due to insufficient encryption of sensitive data received at the API response. An authenticated remote attacker could exploit this vulnerability by manipulating API input parameters through API request URL/payload leading to unauthorized access to sensitive information belonging to other users.

KI-AnalyseKI-gestützt

Betroffene Produkte

63moonsaero

63moonswave_2.0

Referenzen

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2024-0332
Third Party Advisory