The Web interface of Evolution Controller Versions 2.04.560.31.03.2024 and below contains poorly configured access control, allowing for an unauthenticated attacker to update and add user profiles within the application, and gain full access of the site.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: directcyber
Published: 2024-04-14T23:47:13.849Z
Updated: 2024-08-02T01:17:57.373Z
Reserved: 2024-03-21T00:52:45.514Z
Link: CVE-2024-29836
Vulnrichment
Updated: 2024-08-02T01:17:57.373Z
NVD
Status : Awaiting Analysis
Published: 2024-04-15T00:15:12.847
Modified: 2024-04-15T13:15:31.997
Link: CVE-2024-29836
Redhat
No data.