Medium severity5.4NVD Advisory· Published Nov 1, 2024· Updated Apr 15, 2026
CVE-2024-37250
CVE-2024-37250
Description
Missing Authorization vulnerability in WPEngine Inc. Advanced Custom Fields PRO allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Custom Fields PRO: from n/a through 6.3.1.
Affected products
2<=6.3.1+ 1 more
- (no CPE)range: <=6.3.1
- (no CPE)range: <=6.3.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.