A privilege escalation vulnerability exists in the affected products which could allow a malicious user with basic privileges to access functions which should only be available to users with administrative level privileges. If exploited, an attacker could read sensitive data, and create users. For example, a malicious user with basic privileges could perform critical functions such as creating a user with elevated privileges and reading sensitive information in the “views” section.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Rockwell
Published: 2024-07-16T13:00:42.859Z
Updated: 2024-08-01T21:41:03.349Z
Reserved: 2024-07-01T21:06:41.384Z
Link: CVE-2024-6435
Vulnrichment
Updated: 2024-08-01T21:41:03.349Z
NVD
Status : Awaiting Analysis
Published: 2024-07-16T13:15:13.630
Modified: 2024-11-21T09:49:38.837
Link: CVE-2024-6435
Redhat
No data.