Medium severity5.9NVD Advisory· Published Sep 30, 2024· Updated Apr 15, 2026
CVE-2024-46635
CVE-2024-46635
Description
An issue in the API endpoint /AccountMaster/GetCurrentUserInfo of INROAD before v202402060 allows attackers to access sensitive information via a crafted payload to the UserNameOrPhoneNumber parameter.
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.