NATO NCI ANET 3.4.1 allows Insecure Direct Object Reference via a modified ID field in a request for a private draft report (that belongs to an arbitrary user).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-07-17T00:00:00
Updated: 2024-08-02T04:12:24.560Z
Reserved: 2024-06-16T00:00:00
Link: CVE-2024-38447
Vulnrichment
Updated: 2024-08-02T04:12:24.560Z
NVD
Status : Awaiting Analysis
Published: 2024-07-17T18:15:03.990
Modified: 2024-11-21T09:25:53.860
Link: CVE-2024-38447
Redhat
No data.