Unrated severityNVD Advisory· Published Jul 5, 2024· Updated Nov 7, 2024
CVE-2024-37767
CVE-2024-37767
Description
Insecure permissions in the component /api/admin/user of 14Finger v1.1 allows attackers to access all user information via a crafted GET request.
Affected products
2- 14Finger/14Fingerdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.