Lucene search
K

6 matches found

OSV
OSV
added 2024/12/27 9:30 p.m.3 views

GHSA-7P2G-2VXC-5G55 Letta (previously MemGPT) incorrect access control vulnerability

Incorrect access control in the /users endpoint of Cpacker MemGPT v0.3.17 allows attackers to access sensitive data...

7.5CVSS7.5AI score0.00392EPSS
Exploits0References5
NVD
NVD
added 2024/12/27 8:15 p.m.24 views

CVE-2024-39025

Incorrect access control in the /users endpoint of Cpacker MemGPT v0.3.17 allows attackers to access sensitive data...

7.5CVSS0.00392EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/27 12:0 a.m.23 views

CVE-2024-39025

Incorrect access control in the /users endpoint of Cpacker MemGPT v0.3.17 allows attackers to access sensitive data...

0.00392EPSS
Exploits0References2
CVE
CVE
added 2024/12/27 12:0 a.m.59 views

CVE-2024-39025

CVE-2024-39025 affects Letta/MemGPT v0.3.17 (Cpacker MemGPT) and is caused by incorrect access control in the "/users" endpoint. Multiple sources (Red Hat, NVD, OSV, GHSA, Veracode, CIRCL, CNNVD, Snyk) describe that missing authorization in the get_all_users() flow can expose sensitive data. Cond...

7.5CVSS6.5AI score0.00392EPSS
Exploits0References2
OSV
OSV
added 2024/12/27 12:0 a.m.5 views

CVE-2024-39025

Incorrect access control in the /users endpoint of Cpacker MemGPT v0.3.17 allows attackers to access sensitive data...

7.5CVSS7AI score0.00392EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/12/27 12:0 a.m.4 views

PT-2024-28335

Name of the Vulnerable Software and Affected Versions Cpacker MemGPT version 0.3.17 Description The issue is related to incorrect access control in the "/users" endpoint, allowing attackers to access sensitive data. Recommendations For version 0.3.17, consider disabling access to the "/users"...

7.5CVSS5.9AI score0.00392EPSS
Exploits0References15
Rows per page
Query Builder