7 matches found
EUVD-2024-54657
Malicious code in bioql PyPI...
CVE-2024-55585
In the moPS App through 1.8.618, all users can access administrative API endpoints without additional authentication, resulting in unrestricted read and write access, as demonstrated by /api/v1/users/resetpassword...
CVE-2024-55585
In the moPS App through 1.8.618, all users can access administrative API endpoints without additional authentication, resulting in unrestricted read and write access, as demonstrated by /api/v1/users/resetpassword...
moPS App 安全漏洞
The moPS App is a mobile app from moPS Inc. A security vulnerability exists in moPS App version 1.8.618 and prior versions, which stems from unauthenticated access to the management API endpoint and could lead to read/write privilege abuse...
CVE-2024-55585
In the moPS App through 1.8.618, all users can access administrative API endpoints without additional authentication, resulting in unrestricted read and write access, as demonstrated by /api/v1/users/resetpassword...
CVE-2024-55585
CVE-2024-55585 affects moPS App up to version 1.8.618. The vulnerability stems from insufficient access control on administrative API endpoints, allowing unauthenticated users to perform read and write actions (example: /api/v1/users/resetpassword). The CVSS shows high impact with confidentialiti...
CVE-2024-55585
In the moPS App through 1.8.618, all users can access administrative API endpoints without additional authentication, resulting in unrestricted read and write access, as demonstrated by /api/v1/users/resetpassword...