Podatność CVE-2024-22455


Publikacja: 2024-02-14

Opis:

Dell E-Lab Navigator, [3.1.9, 3.2.0], contains an Insecure Direct Object Reference Vulnerability in Feedback submission. An attacker could potentially exploit this vulnerability, to manipulate the email's appearance, potentially deceiving recipients and causing reputational and security risks.

Typ:

CWE-451

(UI Misrepresentation of Critical Information)

 Referencje:
https://www.dell.com/support/kbdoc/en-us/000222015/dsa-2024-073-security-update-for-mobility-e-lab-navigator-vulnerabilities

Copyright 2024, cxsecurity.com

 

Back to Top