CVE-2024-38760

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Aug 13, 2024
CWE ID 200

Summary

CVE-2024-38760 is a vulnerability affecting the Send Users Email software version 1.5.1 and below. It enables unauthorized actors to access functionality not properly constrained by Access Control Lists (ACLs), potentially exposing sensitive information. This issue poses a significant risk as it bypasses intended access restrictions, providing unintended privileges to unauthorized entities.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share