aimeos/ai-admin-graphql is the Aimeos GraphQL API admin interface. Starting in version 2022.04.01 and prior to versions 2022.10.10, 2023.10.6, and 2024.04.6, an improper access control vulnerability allows an editor to modify and take over an admin account in the back end. Versions 2022.10.10, 2023.10.6, and 2024.04.6 fix this issue.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-07-02T16:03:03.253Z

Updated: 2024-08-02T04:19:20.645Z

Reserved: 2024-06-21T18:15:22.263Z

Link: CVE-2024-39323

cve-icon Vulnrichment

Updated: 2024-07-02T18:04:24.267Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-07-02T16:15:04.983

Modified: 2024-11-21T09:27:27.720

Link: CVE-2024-39323

cve-icon Redhat

No data.