CVE-2024-30616
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Nov 4, 2024
Updated: Nov 5, 2024
CWE ID 863
Summary
CVE-2024-30616 is a vulnerability affecting Chamilo Learning Management System version 1.11.26. This issue involves incorrect access control in the main/auth/profile module. As a result, non-admin users are able to manipulate sensitive profile information, potentially leading to data integrity issues. This vulnerability poses a significant risk if exploited and should be addressed promptly by system administrators through the application of the necessary patches.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- LMs