ГлавнаяУязвимости → CVE-2024-9431
8.8высокая

CVE-2024-9431

Описание

In version v0.0.14 of transformeroptimus/superagi, there is an improper privilege management vulnerability. After logging into the system, users can change the passwords of other users, leading to potential account takeover.

Затрагиваемое ПО
Superagi Superagi
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://huntr.com/bounties/9b33d7c1-ed0a-4f5b-a378-694570fd990b