Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate privileges to SuperAdmin via a crafted PUT HTTP request, potentially leading to unauthorized access to sensitive system functions and data.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Yugabyte

Published: 2024-07-19T14:57:00.607Z

Updated: 2024-08-01T21:45:38.372Z

Reserved: 2024-07-18T21:27:07.259Z

Link: CVE-2024-6908

cve-icon Vulnrichment

Updated: 2024-08-01T21:45:38.372Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-07-19T15:15:10.747

Modified: 2024-11-21T09:50:31.250

Link: CVE-2024-6908

cve-icon Redhat

No data.