aimeos/ai-admin-graphql is the Aimeos GraphQL API admin interface. Starting in version 2022.04.01 and prior to versions 2022.10.10, 2023.10.6, and 2024.04.6, an improper access control vulnerability allows an editor to modify and take over an admin account in the back end. Versions 2022.10.10, 2023.10.6, and 2024.04.6 fix this issue.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-07-02T16:03:03.253Z
Updated: 2024-08-02T04:19:20.645Z
Reserved: 2024-06-21T18:15:22.263Z
Link: CVE-2024-39323
Vulnrichment
Updated: 2024-07-02T18:04:24.267Z
NVD
Status : Awaiting Analysis
Published: 2024-07-02T16:15:04.983
Modified: 2024-11-21T09:27:27.720
Link: CVE-2024-39323
Redhat
No data.