CVE-2024-5618

CRITICAL

PruvaSoft Informatics Apinizer Mgmt Console <2024.05.1 - Privilege ...

Title source: llm
STIX 2.1

Description

Incorrect Permission Assignment for Critical Resource vulnerability in PruvaSoft Informatics Apinizer Management Console allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Apinizer Management Console: before 2024.05.1.

References (2)

Core 2
Core References
Third Party Advisory, US Government Resource government-resource broken-link
https://www.usom.gov.tr/bildirim/tr-24-1010

Scores

CVSS v3 9.9
EPSS 0.0043
EPSS Percentile 34.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-732
Status published
Products (1)
PruvaSoft Informatics/Apinizer Management Console < 2024.05.1
Published Jul 18, 2024
Tracked Since Feb 18, 2026