Aim-star Security Vulnerabilities and Issues — Aim-star CVE List

Lucene search

ReedosAim-star

3 matches found

CVE•added 2024/09/11 12:15 p.m.•78 views

CVE-2024-45788

This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing rate limiting on OTP requests in certain API endpoints. An authenticated remote attacker could exploit this vulnerability by sending multiple OTP request through vulnerable API endpoints which could lead to the OTP bombing/fl...

8.7CVSS7.4AI score0.00143EPSS

CVE•added 2024/09/11 12:15 p.m.•77 views

CVE-2024-45786

This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper access controls on its certain API endpoints. An authenticated remote attacker could exploit this vulnerability by manipulating a parameter through API request URL which could lead to gain unauthorized access to sensitive in...

8.7CVSS6.4AI score0.00161EPSS

CVE•added 2024/09/11 12:15 p.m.•68 views

CVE-2024-45787

This vulnerability exists in Reedos aiM-Star version 2.0.1 due to transmission of sensitive information in plain text in certain API endpoints. An authenticated remote attacker could exploit this vulnerability by manipulating a parameter through API request URL and intercepting response of the API ...

8.7CVSS6.3AI score0.00138EPSS