CVE-2024-45050 Ringer Server Does Not Check Members When Loading Messages

Ringer server is the server code for the Ringer messaging app. Prior to version 1.3.1, there is an issue with the messages loading route where Ringer Server does not check to ensure that the user loading the conversation is actually a member of that conversation. This allows any user with a Lif...

PT-2024-31402 · Unknown · Ringer Server

Name of the Vulnerable Software and Affected Versions: Ringer server versions prior to 1.3.1 Description: The issue concerns the messages loading route in the Ringer server, where it fails to verify if the user loading a conversation is actually a member of that conversation. This allows any user...