DATAGERRY - Improper Access Control

The /rest/rights/ REST API endpoint in Becon DATAGerry through 2.2.0 contains an Incorrect Access Control vulnerability. An attacker can remotely access this endpoint without authentication, leading to unauthorized disclosure of sensitive information. id: CVE-2024-50967 info: name: DATAGERRY -...

DATAGERRY - REST API Auth Bypass

Incorrect access control in BECN DATAGERRY v2.2 allows attackers to execute arbitrary commands via crafted web requests. id: CVE-2024-46627 info: name: DATAGERRY - REST API Auth Bypass author: gy741 severity: critical description: | Incorrect access control in BECN DATAGERRY v2.2 allows attackers...

VulnCheck KEV: CVE-2024-50967

The /rest/rights/ REST API endpoint in Becon DATAGerry through 2.2.0 contains an Incorrect Access Control vulnerability. An attacker can remotely access this endpoint without authentication, leading to unauthorized disclosure of sensitive information...

CVE-2024-46627

Incorrect access control in BECN DATAGERRY v2.2 allows attackers to execute arbitrary commands via crafted web requests...

CVE-2024-50967

The /rest/rights/ REST API endpoint in Becon DATAGerry through 2.2.0 contains an Incorrect Access Control vulnerability. An attacker can remotely access this endpoint without authentication, leading to unauthorized disclosure of sensitive information...

CVE-2024-50967

The /rest/rights/ REST API endpoint in Becon DATAGerry through 2.2.0 contains an Incorrect Access Control vulnerability. An attacker can remotely access this endpoint without authentication, leading to unauthorized disclosure of sensitive information...

CVE-2024-50967

DATAGerry (Becon DATAGerry) contains an Incorrect Access Control flaw in the /rest/rights/ REST API endpoint through version 2.2.0, enabling remote access without authentication and leading to unauthorized disclosure of sensitive information. The issue is consistently described across multiple so...

CVE-2024-50967

The /rest/rights/ REST API endpoint in Becon DATAGerry through 2.2.0 contains an Incorrect Access Control vulnerability. An attacker can remotely access this endpoint without authentication, leading to unauthorized disclosure of sensitive information...

CVE-2024-50967

The /rest/rights/ REST API endpoint in Becon DATAGerry through 2.2.0 contains an Incorrect Access Control vulnerability. An attacker can remotely access this endpoint without authentication, leading to unauthorized disclosure of sensitive information...

DATAGerry 安全漏洞

DATAGerry is an open source CMDB and asset management tool from DATAGerry Open Source. A security vulnerability exists in DATAGerry, which originates from /rest/rights/ contains an incorrect access control vulnerability...

PT-2025-2896 · Unknown · Becn Datagerry

Name of the Vulnerable Software and Affected Versions: Becon DATAGerry versions prior to 2.3 Description: The /rest/rights/ REST API endpoint contains an Incorrect Access Control issue, allowing an attacker to remotely access this endpoint without authentication. This leads to the unauthorized...

CVE-2024-46627

Incorrect access control in BECN DATAGERRY v2.2 allows attackers to execute arbitrary commands via crafted web requests...

CVE-2024-46627

Incorrect access control in BECN DATAGERRY v2.2 allows attackers to execute arbitrary commands via crafted web requests...

DATAGERRY 安全漏洞

DATAGERRY is an open source CMDB and asset management tool from DATAGerry Open Source. A security vulnerability exists in DATAGERRY version 2.2 that stems from the presence of an incorrect privilege modification that allows an attacker to execute arbitrary commands via a crafted web request...

CVE-2024-46627

DATAGERRY (BECN) v2.2 shows an Incorrect Access Control vulnerability that allows an attacker to execute arbitrary commands via crafted HTTP requests to the REST API. The issue is documented as a REST API authentication bypass/ACL flaw with high impact (CVSS 3.1: 9.1, Critical) and affects the v2...

CVE-2024-46627

Incorrect access control in BECN DATAGERRY v2.2 allows attackers to execute arbitrary commands via crafted web requests...

PT-2024-32082 · Unknown · Becn Datagerry

Name of the Vulnerable Software and Affected Versions: BECN DATAGERRY version 2.2 Description: The issue allows attackers to execute arbitrary commands via crafted web requests due to incorrect access control. Recommendations: For BECN DATAGERRY version 2.2, consider restricting access to the web...