Vulnerabilities

CVE-2024-10469

by Fred · 28/10/2024

VINCE versions before 3.0.9 is vulnerable to exposure of User information to authenticated users.

More information : https://github.com/CERTCC/VINCE/

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : LOW
User interaction : NONE
Confidentiality impact : HIGH
Integrity impact : NONE
Base score : 6.5
Base severity : MEDIUM
Exploitability score : 2.8
Impact score : 3.6

Similar

Tags: Cybersecurity Alert