CVE-2024-22047
3.1LOWA race condition exists in Audited 4.0.0 to 5.3.3 that can result in an authenticated user to cause audit log entries to be attributed to another user.
게시됨: 1/4/2024업데이트됨: 11/28/2025
설명
A race condition exists in Audited 4.0.0 to 5.3.3 that can result in an authenticated user to cause audit log entries to be attributed to another user.
AI 분석AI 기반
영향받는 제품
collectiveideaaudited
참조
- https://github.com/advisories/GHSA-hjp3-5g2q-7jwwThird Party Advisory
- https://github.com/collectiveidea/audited/issues/601Issue TrackingPatchVendor Advisory
- https://github.com/collectiveidea/audited/pull/669Patch
- https://github.com/collectiveidea/audited/pull/671Patch
- https://github.com/collectiveidea/audited/security/advisories/GHSA-hjp3-5g2q-7jwwVendor Advisory
- https://vulncheck.com/advisories/vc-advisory-GHSA-hjp3-5g2q-7jwwThird Party Advisory
- https://github.com/advisories/GHSA-hjp3-5g2q-7jwwThird Party Advisory
- https://github.com/collectiveidea/audited/issues/601Issue TrackingPatchVendor Advisory
- https://github.com/collectiveidea/audited/pull/669Patch
- https://github.com/collectiveidea/audited/pull/671Patch
- https://github.com/collectiveidea/audited/security/advisories/GHSA-hjp3-5g2q-7jwwVendor Advisory
- https://vulncheck.com/advisories/vc-advisory-GHSA-hjp3-5g2q-7jwwThird Party Advisory