Siem Security Vulnerabilities and Issues — Siem CVE List

Lucene search

LogpointSiem

4 matches found

CVE•added 2024/11/07 5:15 p.m.•73 views

CVE-2024-48951

An issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery (SSRF) on SOAR can be used to leak Logpoint's API Token leading to authentication bypass.

7.5CVSS7.3AI score0.00066EPSS

CVE•added 2024/11/07 5:15 p.m.•42 views

CVE-2024-48950

An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup was exposed, allowing unauthenticated attackers to bypass CSRF protections and authentication.

7.5CVSS7.2AI score0.001EPSS

CVE•added 2024/11/07 5:15 p.m.•42 views

CVE-2024-48954

An issue was discovered in Logpoint before 7.5.0. Unvalidated input during the EventHub Collector setup by an authenticated user leads to Remote Code execution.

6.4CVSS7.3AI score0.00418EPSS

CVE•added 2024/11/07 5:15 p.m.•41 views

CVE-2024-48953

An issue was discovered in Logpoint before 7.5.0. Endpoints for creating, editing, or deleting third-party authentication modules lacked proper authorization checks. This allowed unauthenticated users to register their own authentication plugins in Logpoint, resulting in unauthorized access.

7.5CVSS7.1AI score0.00078EPSS