EUVD-2024-17401

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Authorization flaw in lunary-ai version 1.0.0 allows unauthorized radar creation without payment

Reporter	Title	Published	Views	Family All 7
CNNVD	Lunary 安全漏洞	15 Apr 202400:00	–	cnnvd
CVE	CVE-2024-1666	16 Apr 202400:00	–	cve
Cvelist	CVE-2024-1666 Unauthorized Radar Creation in lunary-ai/lunary	16 Apr 202400:00	–	cvelist
NVD	CVE-2024-1666	16 Apr 202400:15	–	nvd
Positive Technologies	PT-2024-18211 · Lunary Ai · Lunary	15 Apr 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-1666	5 Feb 202505:37	–	redhatcve
Vulnrichment	CVE-2024-1666 Unauthorized Radar Creation in lunary-ai/lunary	16 Apr 202400:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "192edf3d-91f6-3198-92ea-cf62e83ad3df",
        "vendor": {
          "name": "lunary-ai"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "f2b8457b-b8c5-3c0f-aca3-e3fe03360241",
        "product": {
          "name": "lunary-ai/lunary"
        }
      },
      {
        "id": "f68809d6-825b-35b6-b626-a62fb045e4ec",
        "product": {
          "name": "lunary-ai/lunary"
        },
        "product_version": "unspecified <1.2.7"
      }
    ]
  }
]

Source	Link
huntr	www.huntr.com/bounties/0f310501-b5b0-4be0-ae38-d6b836f71ff0
github	www.github.com/lunary-ai/lunary/commit/c57cd50fa0477fd2a2efe60810c0099eebd66f54

03 Oct 2025 20:07Current

7.7High risk

Vulners AI Score7.7

CVSS 37.5

CVSS 3.15.3

EPSS0.0009

SSVC