4 matches found
CVE-2024-32969 vantage6 collaboration admins can extend their influence by expanding the collaboration
vantage6 is an open-source infrastructure for privacy preserving analysis. Collaboration administrators can add extra organizations to their collaboration that can extend their influence. For example, organizations that they include can then create new users for which they know the passwords, and...
CVE-2024-32969 vantage6 collaboration admins can extend their influence by expanding the collaboration
vantage6 is an open-source infrastructure for privacy preserving analysis. Collaboration administrators can add extra organizations to their collaboration that can extend their influence. For example, organizations that they include can then create new users for which they know the passwords, and...
CVE-2024-32969
CVE-2024-32969 affects the vantage6 open‑source privacy-preserving analysis infrastructure. The underlying issue is improper access control: collaboration administrators can add extra organizations to a collaboration, which can extend their influence and allow those organizations to create new us...
vantage6-algorithm-store (>=4.3.0 <=4.15.1rc1), vantage6-node (>=0.0.0 <=4.15.1rc1) +1 more potentially affected by CVE-2024-32969 via vantage6 (>=0.0.0 <=4.5.0)
vantage6 PYPI version =0.0.0, =4.3.0, =0.0.0, =0.0.0, =4.15.1rc1 Source cves: CVE-2024-32969 Source advisory: OSV:GHSA-99R4-CJP4-3HMX...