High severityNVD Advisory· Published Aug 19, 2024· Updated Aug 19, 2024
CVE-2024-44076
CVE-2024-44076
Description
In Microcks before 1.10.0, the POST /api/import and POST /api/export endpoints allow non-administrator access.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
io.github.microcks:microcks-appMaven | < 1.10.0 | 1.10.0 |
Affected products
2Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-r6ph-5fp2-3w2vghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-44076ghsaADVISORY
- github.com/microcks/microcks/commit/4bb98d76f050710e42f5978877fe70e2f6edabf0ghsaWEB
- github.com/microcks/microcks/commit/a47d105eb45dac5a0712d6e6bf12b3a4347e5e68ghsaWEB
- github.com/microcks/microcks/compare/1.9.1-fix-1...1.10.0ghsaWEB
- github.com/microcks/microcks/issues/1212ghsaWEB
- github.com/microcks/microcks/releases/tag/1.10.0ghsaWEB
News mentions
0No linked articles in our index yet.