CVE-2024-38760
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Published Aug 13, 2024
CWE ID 200
Summary
CVE-2024-38760 is a vulnerability affecting the Send Users Email software version 1.5.1 and below. It enables unauthorized actors to access functionality not properly constrained by Access Control Lists (ACLs), potentially exposing sensitive information. This issue poses a significant risk as it bypasses intended access restrictions, providing unintended privileges to unauthorized entities.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share