
We found results for “”
CVE-2024-24778
Good to know:


Date: March 3, 2025
Improper privilege management in a REST interface allowed registered users to access unauthorized resources if the resource ID was know. \n\n\n\n\n\nThis issue affects Apache StreamPipes: through 0.95.1.\n\nUsers are recommended to upgrade to version 0.97.0 which fixes the issue.
Severity Score
Related Resources (6)
Severity Score
Weakness Type (CWE)
Improper Privilege Management
CWE-269Top Fix

Upgrade Version
Upgrade to version streampipes - 0.97.0;org.apache.streampipes:streampipes-parent:0.97.0
CVSS v3.1
Base Score: |
|
---|---|
Attack Vector (AV): | NETWORK |
Attack Complexity (AC): | LOW |
Privileges Required (PR): | LOW |
User Interaction (UI): | NONE |
Scope (S): | UNCHANGED |
Confidentiality (C): | HIGH |
Integrity (I): | NONE |
Availability (A): | NONE |