The application suffers from a privilege escalation vulnerability. An attacker logged in as guest can escalate his privileges by poisoning the cookie to become administrator.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2024-04-18T22:08:17.798Z

Updated: 2024-08-08T15:41:44.543Z

Reserved: 2024-01-05T22:07:42.986Z

Link: CVE-2024-22186

cve-icon Vulnrichment

Updated: 2024-08-01T22:35:34.875Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-04-18T23:15:07.310

Modified: 2024-11-21T08:55:44.987

Link: CVE-2024-22186

cve-icon Redhat

No data.