Metrics
Affected Vendors & Products
Fri, 06 Dec 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 05 Dec 2024 17:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 1.0.0. It has been declared as critical. Affected by this vulnerability is the function doFilter of the file \agile-bpm-basic-master\ab-auth\ab-auth-spring-security-oauth2\src\main\java\com\dstz\auth\filter\AuthorizationTokenCheckFilter.java. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. | |
Title | Shenzhen Dashi Tongzhou Information Technology AgileBPM AuthorizationTokenCheckFilter.java doFilter access control | |
Weaknesses | CWE-266 CWE-284 |
|
References |
| |
Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2024-12-05T17:31:05.516Z
Updated: 2024-12-06T16:29:47.484Z
Reserved: 2024-12-05T08:53:05.274Z
Link: CVE-2024-12235
Updated: 2024-12-06T16:29:43.120Z
Status : Received
Published: 2024-12-05T18:15:21.660
Modified: 2024-12-05T18:15:21.660
Link: CVE-2024-12235
No data.