ГлавнаяУязвимости → CVE-2024-44076
9.8критическая

CVE-2024-44076

Описание

In Microcks before 1.10.0, the POST /api/import and POST /api/export endpoints allow non-administrator access.

Затрагиваемое ПО
Microcks Microcks
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/microcks/microcks/compare/1.9.1-fix-1...1.10.0https://github.com/microcks/microcks/issues/1212https://github.com/microcks/microcks/releases/tag/1.10.0