ГлавнаяУязвимости → CVE-2024-48950
7.5высокая

CVE-2024-48950

Описание

An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup was exposed, allowing unauthenticated attackers to bypass CSRF protections and authentication.

Затрагиваемое ПО
Logpoint Siem
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://docs.logpoint.com/docs/whats-new-in-logpoint/en/latest/https://servicedesk.logpoint.com/hc/en-us/articles/21968264954525-Authentication-and-CSRF-bypass-leading-to-unauthorized-accesshttps://servicedesk.logpoint.com/hc/en-us/sections/7201103730845-Product-Security