High severity7.5NVD Advisory· Published Jul 5, 2024· Updated Jun 17, 2026
CVE-2024-37767
CVE-2024-37767
Description
Insecure permissions in the component /api/admin/user of 14Finger v1.1 allows attackers to access all user information via a crafted GET request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/b1ackc4t/14Finger/issues/12nvdExploitIssue TrackingVendor Advisory
News mentions
0No linked articles in our index yet.