ghsa-f8v6-h8xc-6v8q
Vulnerability from github
Published
2024-02-13 09:30
Modified
2024-02-13 09:30
Severity
Details
A vulnerability has been identified in Polarion ALM (All versions). The REST API endpoints of doorsconnector of the affected product lacks proper authentication. An unauthenticated attacker could access the endpoints, and potentially execute code.
{ "affected": [], "aliases": [ "CVE-2024-23813" ], "database_specific": { "cwe_ids": [ "CWE-287" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2024-02-13T09:15:50Z", "severity": "HIGH" }, "details": "A vulnerability has been identified in Polarion ALM (All versions). The REST API endpoints of doorsconnector of the affected product lacks proper authentication. An unauthenticated attacker could access the endpoints, and potentially execute code.", "id": "GHSA-f8v6-h8xc-6v8q", "modified": "2024-02-13T09:30:33Z", "published": "2024-02-13T09:30:33Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23813" }, { "type": "WEB", "url": "https://cert-portal.siemens.com/productcert/html/ssa-871717.html" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "type": "CVSS_V3" } ] }
Loading...