ГлавнаяУязвимости → CVE-2024-40404
9.8критическая

CVE-2024-40404

Описание

Cybele Software Thinfinity Workspace before v7.0.2.113 was discovered to contain an access control issue in the API endpoint where Web Sockets connections are established.

Затрагиваемое ПО
Cybelesoft Thinfinity workspace
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://blog.cybelesoft.com/thinfinity-workspace-security-bulletin-nov-2024/