Unrated severityNVD Advisory· Published Mar 20, 2024· Updated Aug 2, 2024
CVE-2024-28735
CVE-2024-28735
Description
Unit4 Financials by Coda versions prior to 2023Q4 suffer from an incorrect access control authorization bypass vulnerability which allows an authenticated user to modify the password of any user of the application via a crafted request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Unit4/Financials by Codadescription
- Range: <2023Q4
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.