Unrated severityNVD Advisory· Published Apr 15, 2024· Updated Oct 18, 2024
aEnrich Technology a+HRD - Exposure of Sensitive Data
CVE-2024-3774
Description
aEnrich Technology a+HRD's functionality for front-end retrieval of system configuration values lacks proper restrictions on a specific parameter, allowing attackers to modify this parameter to access certain sensitive system configuration values.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- aEnrich Technology/a+HRDv5Range: 6.8
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-7724-c28d3-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.