How severe is CVE-2024-4843?

CVE-2024-4843 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2024-4843

4.3MEDIUM

ePO doesn't allow a regular privileged user to delete tasks or assignments. Insecure direct object references that allow a least privileged user to manipulate the client task and client task assignmen

Опубликовано: 5/16/2024Обновлено: 11/21/2024

Описание

ePO doesn't allow a regular privileged user to delete tasks or assignments. Insecure direct object references that allow a least privileged user to manipulate the client task and client task assignments, hence escalating his/her privilege.

ИИ-АнализНа базе ИИ

Ссылки

https://thrive.trellix.com/s/article/000013505
https://thrive.trellix.com/s/article/000013505