The Web interface of Evolution Controller Versions 2.04.560.31.03.2024 and below contains poorly configured access control on DESKTOP_EDIT_USER_GET_CARD, allowing for an unauthenticated attacker to return the card value data of any user
References
Configurations
No configuration.
History
21 Nov 2024, 09:08
Type | Values Removed | Values Added |
---|---|---|
References | () https://directcyber.com.au/sa/CVE-2024-29836-to-29844-evolution-controller-multiple-vulnerabilities.html - |
15 Apr 2024, 13:15
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
15 Apr 2024, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-15 00:15
Updated : 2024-11-21 09:08
NVD link : CVE-2024-29839
Mitre link : CVE-2024-29839
CVE.ORG link : CVE-2024-29839
JSON object : View
Products Affected
No product.