CVSS 3.1 Score 7.5 of 10 (high)


Published Jan 25, 2024
Updated: Feb 21, 2024
CWE ID 287
CWE ID 1390


CVE-2024-0822 is an authentication bypass vulnerability found in overt-engine. This flaw allows the creation of users in the system without authentication due to a flaw in the CreateUserSession command. The vulnerability has a risk score of 27 and a base severity rating of HIGH. It has an exploitability score of 3.9 and is classified as a network-based attack vector with high integrity impact. The vulnerability poses a potential danger to organizations as it can be exploited remotely without requiring any privileges or user interaction. The specific products affected by this vulnerability are not mentioned in the provided information, and there is no information on remediation steps or potential impacts beyond integrity.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-0822 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options