CVE-2023-24625
6.5MEDIUMFaveo 5.0.1 allows remote attackers to obtain sensitive information via a modified user ID in an Insecure Direct Object Reference (IDOR) attack.
게시됨: 3/24/2023업데이트됨: 2/21/2025
설명
Faveo 5.0.1 allows remote attackers to obtain sensitive information via a modified user ID in an Insecure Direct Object Reference (IDOR) attack.
AI 분석AI 기반
영향받는 제품
ladybirdwebfaveo_servicedesk
5.0.1
참조
- https://cupc4k3.lol/cve-2023-24625-idor-in-faveo-service-desk-37a63f53d896ExploitThird Party Advisory
- https://medium.com/%40cupc4k3/vulnerabilities-in-faveo-service-desk-37a63f53d896
- https://www.faveohelpdesk.com/servicedesk/Product
- https://cupc4k3.lol/cve-2023-24625-idor-in-faveo-service-desk-37a63f53d896ExploitThird Party Advisory
- https://medium.com/%40cupc4k3/vulnerabilities-in-faveo-service-desk-37a63f53d896
- https://www.faveohelpdesk.com/servicedesk/Product