Clerk helps developers build user management. Unauthorized access or privilege escalation due to a logic flaw in auth() in the App Router or getAuth() in the Pages Router. This vulnerability was patched in version 4.29.3.
History

Thu, 14 Nov 2024 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-01-12T20:07:40.402Z

Updated: 2024-11-14T15:42:39.402Z

Reserved: 2024-01-08T04:59:27.373Z

Link: CVE-2024-22206

cve-icon Vulnrichment

Updated: 2024-08-01T22:35:34.930Z

cve-icon NVD

Status : Modified

Published: 2024-01-12T20:15:47.420

Modified: 2024-11-21T08:55:47.860

Link: CVE-2024-22206

cve-icon Redhat

No data.