Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/03/05 12:30 p.m.9 views

CVE-2024-24778

Improper privilege management in a REST interface allowed registered users to access unauthorized resources if the resource ID was know. This issue affects Apache StreamPipes: through 0.95.1. Users are recommended to upgrade to version 0.97.0 which fixes the issue...

6.5CVSS7AI score0.00615EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2025/03/03 12:30 p.m.7 views

org.apache.streampipes:streampipes-backend (>=0.66.0 <=0.90.0), org.apache.streampipes:streampipes-platform-services (>=0.68.0 <=0.95.1) +2 more potentially affected by CVE-2024-24778 via org.apache.streampipes:streampipes-rest (>=0.66.0 <=0.95.1)

org.apache.streampipes:streampipes-rest MAVEN version =0.66.0, =0.66.0, =0.68.0, =0.91.0, =0.93.0, =0.95.0 Source cves: CVE-2024-24778 Source advisory: SNYK:JAVA-ORGAPACHESTREAMPIPES-9058044...

6.5CVSS5.8AI score0.00615EPSS
Exploits0
Circl
Circl
added 2025/03/03 11:30 a.m.16 views

CVE-2024-24778

creationtimestamp| type| source ---|---|--- 2025-03-03 11:30:21+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6192 2025-03-03 16:10:28+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3ljidmjoeni2u 2025-08-18 13:31:24+00:00| seen| MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3...

6.5CVSS4.8AI score0.00615EPSS
Exploits0References2
NVD
NVD
added 2025/03/03 11:15 a.m.20 views

CVE-2024-24778

Improper privilege management in a REST interface allowed registered users to access unauthorized resources if the resource ID was know. This issue affects Apache StreamPipes: through 0.95.1. Users are recommended to upgrade to version 0.97.0 which fixes the issue...

6.5CVSS0.00615EPSS
Exploits0References2
CVE
CVE
added 2025/03/03 10:37 a.m.61 views

CVE-2024-24778

CVE-2024-24778 – Apache StreamPipes" : Applies to StreamPipes up to version 0.95.1. Root cause described across sources as improper privilege management in a REST interface, due to lack of filtering/sloppy validation of resource IDs, allowing registered users to access unauthorized resources if t...

6.5CVSS7.1AI score0.00615EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/03/03 10:37 a.m.5 views

CVE-2024-24778 Apache StreamPipes: Resources Permission Escalation

Improper privilege management in a REST interface allowed registered users to access unauthorized resources if the resource ID was know. This issue affects Apache StreamPipes: through 0.95.1. Users are recommended to upgrade to version 0.97.0 which fixes the issue...

6.5CVSS5.9AI score0.00615EPSS
Exploits0References4
Rows per page
Query Builder