High severity7.3NVD Advisory· Published Nov 13, 2024· Updated Jun 17, 2026
CVE-2024-40408
CVE-2024-40408
Description
Cybele Software Thinfinity Workspace before v7.0.2.113 was discovered to contain an access control issue in the Create Profile section. This vulnerability allows attackers to create arbitrary user profiles with elevated privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <7.0.2.113
Patches
Vulnerability mechanics
References
1- blog.cybelesoft.com/thinfinity-workspace-security-bulletin-nov-2024/nvdVendor Advisory
News mentions
0No linked articles in our index yet.