Moderate severityNVD Advisory· Published Mar 28, 2024· Updated Nov 15, 2024
CVE-2024-29316
CVE-2024-29316
Description
NodeBB 3.6.7 is vulnerable to Incorrect Access Control, e.g., a low-privileged attacker can access the restricted tabs for the Admin group via "isadmin":true.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
nodebbnpm | < 3.6.7 | 3.6.7 |
Affected products
2Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.