Lucene search
PRIOn knowledge basePRION:CVE-2024-23687HistoryJan 19, 2024 - 10:15 p.m.
Hardcoded credentials
2024-01-1922:15:00
PRIOn knowledge base
www.prio-n.com
5
hardcoded credentials
unauthenticated access
critical apis
user data modification
configurations
single-sign-on
fees/fines
Hard-coded credentials in FOLIO mod-data-export-spring versions before 1.5.4 and from 2.0.0 to 2.0.2 allows unauthenticated users to access critical APIs, modify user data, modify configurations including single-sign-on, and manipulate fees/fines.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mod-data-export-spring | ge | 2.0.0 | |
| mod-data-export-spring | lt | 2.0.2 | |
| mod-data-export-spring | lt | 1.5.4 |
References
Related
osv
osv
Hard-coded System User Credentials in Folio Data Export Spring module
2023-07-25 13:53:42
Hard-coded credentials in org.folio:mod-data-export-spring
2024-01-20 00:30:27
CVE-2024-23687
2024-01-19 22:15:08
github
github
Hard-coded credentials in org.folio:mod-data-export-spring
2024-01-20 00:30:27
nvd
nvd
CVE-2024-23687
2024-01-19 22:15:08
cve
cve
CVE-2024-23687
2024-01-19 22:15:08
cvelist
cvelist
CVE-2024-23687 FOLIO mod-data-export-spring Hard-Coded Credentials
2024-01-19 21:15:18