Products
Avalara for Salesforce CPQ app
- before 7.0
Source
cve@mitre.org
Tags
CVE-2024-38453 details
Published : July 3, 2024, 6:15 a.m.
Last Modified : July 3, 2024, 12:53 p.m.
Last Modified : July 3, 2024, 12:53 p.m.
Description
The Avalara for Salesforce CPQ app before 7.0 for Salesforce allows attackers to read an API key. NOTE: the current version is 11 as of mid-2024.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://appexchange.salesforce.com/appxListingDetail?listingId=a0N3A00000FKAoOUAX | cve@mitre.org |
https://deneyed.com/blog/avalara/ | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.