How severe is CVE-2024-55471?

CVE-2024-55471 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2024-55471

6.5MEDIUM

Oqtane Framework is vulnerable to Insecure Direct Object Reference (IDOR) in Oqtane.Controllers.UserController. This allows unauthorized users to access sensitive information of other users by manipul

Published: 12/20/2024Updated: 12/20/2024

Description

Oqtane Framework is vulnerable to Insecure Direct Object Reference (IDOR) in Oqtane.Controllers.UserController. This allows unauthorized users to access sensitive information of other users by manipulating the id parameter.

AI AnalysisPowered by AI

References

https://github.com/oqtane/oqtane.framework/pull/4880/files
https://medium.com/@Rudra_2158/cve-2024-55471-breaking-down-the-idor-vulnerability-in-oqtane-framework-c0f4b02f12fc