VYPR
Moderate severityNVD Advisory· Published Aug 20, 2024· Updated Sep 3, 2024

Umbraco CMS Improper Access Control vulnerability

CVE-2024-43377

Description

Umbraco CMS is an ASP.NET CMS. An authenticated user can access a few unintended endpoints. This issue is fixed in 14.1.2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
Umbraco.CmsNuGet
>= 14.0.0, < 14.1.214.1.2

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.