CVE-2024-4843

4.3MEDIUM

ePO doesn't allow a regular privileged user to delete tasks or assignments. Insecure direct object references that allow a least privileged user to manipulate the client task and client task assignmen

게시됨: 5/16/2024업데이트됨: 11/21/2024
NVD에서 보기MITRE에서 보기

설명

ePO doesn't allow a regular privileged user to delete tasks or assignments. Insecure direct object references that allow a least privileged user to manipulate the client task and client task assignments, hence escalating his/her privilege.

AI 분석AI 기반

참조