CVE-2024-38447

July 17, 2024, 6:15 p.m.

Product(s) Impacted

NATO NCI ANET

  • 3.4.1

Description

NATO NCI ANET 3.4.1 allows Insecure Direct Object Reference via a modified ID field in a request for a private draft report (that belongs to an arbitrary user).

Weaknesses

Date

Published: July 17, 2024, 6:15 p.m.

Last Modified: July 17, 2024, 6:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References