CVE-2024-25106

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Feb 8, 2024

Updated: Feb 15, 2024

CWE ID 285

CWE ID 269

CWE ID 284

CWE ID 287

CWE ID 272

Summary

CVE-2024-25106 is a critical vulnerability found in the "/api/{org_id}/users/{email_id}" endpoint of OpenObserve, an observability platform designed to work at petabyte scale. The vulnerability allows any authenticated user within an organization to remove any other user, including those with "Admin" and "Root" roles, without proper authorization. This vulnerability poses a significant danger as it can lead to unauthorized access and disruptions in operations. The core of the vulnerability lies in the `remove_user_from_org` function in the user management system, which fails to check for appropriate administrative privileges. To remediate this vulnerability, organizations using OpenObserve should apply a patch or update provided by the vendor as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database