Craft is a content management system. This is a potential moderate impact, low complexity privilege escalation vulnerability in Craft starting in 3.x prior to 3.9.6 and 4.x prior to 4.4.16 with certain user permissions setups. This has been fixed in Craft 4.4.16 and Craft 3.9.6. Users should ensure they are running at least those versions.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-01-03T16:51:25.704Z
Updated: 2024-08-01T22:27:35.206Z
Reserved: 2023-12-29T03:00:44.953Z
Link: CVE-2024-21622
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-01-03T17:15:12.330
Modified: 2024-11-21T08:54:44.617
Link: CVE-2024-21622
Redhat
No data.