Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-40408

Nov. 15, 2024, 1:58 p.m.

Tags

cve@mitre.org
2024-11-13
CVE-2024-40408

Product(s) Impacted

Cybele Software Thinfinity Workspace

  • before v7.0.2.113

Description

Cybele Software Thinfinity Workspace before v7.0.2.113 was discovered to contain an access control issue in the Create Profile section. This vulnerability allows attackers to create arbitrary user profiles with elevated privileges.

Weaknesses

Date

Published: Nov. 13, 2024, 11:15 p.m.

Last Modified: Nov. 15, 2024, 1:58 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://blog.cybelesoft.com/ cve@mitre.org