CVE-2024-32712

HIGH

Podlove Podcast Publisher <= 4.0.14 - Missing Authorization

Title source: llm

Missing Authorization vulnerability in Podlove Podlove Podcast Publisher.This issue affects Podlove Podcast Publisher: from n/a through 4.0.14.

Core 1

Core References

Third Party Advisory vdb-entry

CVSS v3 7.5

EPSS 0.0039

EPSS Percentile 31.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

CWE

CWE-352 CWE-862

Status published

Products (2)

Podlove/Podlove Podcast Publisher < 4.0.14

podlove/podlove_podcast_publisher < 4.0.15

Published May 14, 2024

Tracked Since Feb 18, 2026