EUVD-2024-17467

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in lunary-ai/lunary 1.0.1 allows removed users to access logs via old tokens.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-1740	12 Apr 202405:35	–	circl
CNNVD	lunary 安全漏洞	10 Apr 202400:00	–	cnnvd
CNVD	lunary information disclosure vulnerability (CNVD-2025-12185)	22 Apr 202400:00	–	cnvd
CVE	CVE-2024-1740	10 Apr 202417:08	–	cve
Cvelist	CVE-2024-1740 Incorrect Authorization in lunary-ai/lunary	10 Apr 202417:08	–	cvelist
NVD	CVE-2024-1740	10 Apr 202417:15	–	nvd
Positive Technologies	PT-2024-18265 · Lunary Ai · Lunary	10 Apr 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-1740	5 Feb 202505:18	–	redhatcve
Vulnrichment	CVE-2024-1740 Incorrect Authorization in lunary-ai/lunary	10 Apr 202417:08	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "9070d005-e7ce-368a-a73d-9cb94b974795",
        "vendor": {
          "name": "lunary-ai"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "9f62b99a-bdfe-3d0c-996d-c880612b183a",
        "product": {
          "name": "lunary-ai/lunary"
        },
        "product_version": "unspecified <1.2.7"
      },
      {
        "id": "e92e0054-731c-39ce-8f66-8cf30b97b58e",
        "product": {
          "name": "lunary-ai/lunary"
        }
      }
    ]
  }
]

Source	Link
huntr	www.huntr.com/bounties/c1a51f71-628e-4eb5-ac35-50bf64832cfd
github	www.github.com/lunary-ai/lunary/commit/c57cd50fa0477fd2a2efe60810c0099eebd66f54

03 Oct 2025 20:07Current

9.2High risk

Vulners AI Score9.2

CVSS 39.1

CVSS 3.19.1

EPSS0.00131

SSVC