4 matches found
CVE-2024-40531
A mass assignment vulnerability exists in Pantera CRM versions 401.152 and 402.072. This flaw allows authenticated users to modify any user attribute, including roles, by injecting additional parameters via profile management functions...
CVE-2024-40531
creationtimestamp| type| source ---|---|--- 2024-08-05 18:55:56+00:00| seen| https://t.me/cvedetector/2472...
CVE-2024-40531
A mass assignment vulnerability exists in Pantera CRM versions 401.152 and 402.072. This flaw allows authenticated users to modify any user attribute, including roles, by injecting additional parameters via profile management functions...
CVE-2024-40531
CVE-2024-40531 affects Pantera CRM versions 401.152 and 402.072. The vulnerability is a mass assignment flaw in profile management that allows an authenticated user to inject extra parameters and modify any user attribute, including roles. CVSS 3.1 vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, bas...