Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-6360

Oct. 4, 2024, 1:50 p.m.

Product(s) Impacted

OpenText™ Vertica

  • 10.0 - 10.X
  • 11.0 - 11.X
  • 12.0 - 12.X
  • 23.0 - 23.X
  • 24.0 - 24.X

Description

Incorrect Permission Assignment for Critical Resource vulnerability in OpenText™ Vertica could allow Privilege Abuse and result in unauthorized access or privileges to Vertica agent apikey. This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X, from 23.0 through 23.X, from 24.0 through 24.X.

Weaknesses

CWE-732
Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CWE ID: 732

Date

Published: Oct. 2, 2024, 4:15 p.m.

Last Modified: Oct. 4, 2024, 1:50 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security@opentext.com

References

https://portal.microfocus.com/ security@opentext.com