Unrated severityNVD Advisory· Published Jun 25, 2024· Updated Sep 17, 2024

Improper Handling of Insufficient Permissions or Privileges in Conduit

CVE-2024-6302

Description

Lack of privilege checking when processing a redaction in Conduit versions v0.6.0 and lower, allowing a local user to redact any message from users on the same server, given that they are able to send redaction events.

Affected products

The Conduit Contributors/Conduitv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

conduit.rs/changelog/mitre
gitlab.com/famedly/conduit/-/releases/v0.7.0mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000