3 matches found
CVE-2024-38164
The CVE-2024-38164 entry concerns an improper access control in GroupMe that could allow an unauthenticated attacker, by convincing a user to click a malicious link, to escalate privileges over the network. Affected product: GroupMe (GroupMe mobile/app context implied). Vulnerable component/conte...
CVE-2024-38183
CVE-2024-38183 affects GroupMe with an improper access control vulnerability that allows an unauthenticated attacker to elevate privileges over a network. Multiple connected entries describe the issue as an elevation-of-privilege via insufficient access control and note that exploitation involves...
CVE-2024-38176
CVE-2024-38176 affects Microsoft GroupMe. The issue is an improper restriction of excessive authentication attempts that allows an unauthenticated, network-based attacker to achieve elevation of privileges. The description and connected sources confirm a privilege-escalation impact with high seve...