Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate privileges to SuperAdmin via a crafted PUT HTTP request, potentially leading to unauthorized access to sensitive system functions and data.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Yugabyte
Published: 2024-07-19T14:57:00.607Z
Updated: 2024-08-01T21:45:38.372Z
Reserved: 2024-07-18T21:27:07.259Z
Link: CVE-2024-6908
Vulnrichment
Updated: 2024-08-01T21:45:38.372Z
NVD
Status : Awaiting Analysis
Published: 2024-07-19T15:15:10.747
Modified: 2024-11-21T09:50:31.250
Link: CVE-2024-6908
Redhat
No data.