VYPR
Unrated severityNVD Advisory· Published May 23, 2024· Updated Aug 1, 2024

OpenCTI Authenticated Privilege Escalation

CVE-2024-26139

Description

OpenCTI is an open source platform allowing organizations to manage their cyber threat intelligence knowledge and observables. Due to lack of certain security controls on the profile edit functionality, an authenticated attacker with low privileges can gain administrative privileges on the web application.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.