Awaiting Analysis
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Products
Soffid IAM
- before 3.5.39
Source
cve@mitre.org
Tags
CVE-2024-39669 details
Published : June 27, 2024, 4:15 p.m.
Last Modified : June 27, 2024, 5:11 p.m.
Last Modified : June 27, 2024, 5:11 p.m.
Description
In the Console in Soffid IAM before 3.5.39, necessary checks were not applied to some Java objects. A malicious agent could possibly execute arbitrary code in the Sync Server and compromise security.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|
References
| URL | Source |
|---|---|
| https://bookstack.soffid.com/books/security-advisories/page/cve-2024-39669 | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.