CVE-2024-9970
8.8HIGHThe FlowMaster BPM Plus system from NewType has a privilege escalation vulnerability. Remote attackers with regular privileges can elevate their privileges to administrator by tampering with a specifi
게시됨: 10/15/2024업데이트됨: 10/17/2024
설명
The FlowMaster BPM Plus system from NewType has a privilege escalation vulnerability. Remote attackers with regular privileges can elevate their privileges to administrator by tampering with a specific cookie.
AI 분석AI 기반
영향받는 제품
newtypeflowmaster_bpm_plus
참조
- https://www.twcert.org.tw/en/cp-139-8137-ea537-2.htmlThird Party Advisory
- https://www.twcert.org.tw/tw/cp-132-8136-4d5b4-1.htmlThird Party Advisory