CVE-2024-6582

MEDIUM

lunary < 1.4.9 - Unauthenticated Identity Provider Settings Update

Title source: llm

Description

A broken access control vulnerability exists in the latest version of lunary-ai/lunary. The `saml.ts` file allows a user from one organization to update the Identity Provider (IDP) settings and view the SSO metadata of another organization. This vulnerability can lead to unauthorized access and potential account takeover if the email of a user in the target organization is known.

References (2)

Core 2

Core References

Patch

https://github.com/lunary-ai/lunary/commit/1f043d8798ad87346dfe378eea723bff78ad7433

Exploit, Third Party Advisory

https://huntr.com/bounties/251d138c-3911-4a81-96e5-5a4ab59a0b59

Scores

CVSS v3 4.3

EPSS 0.0018

EPSS Percentile 39.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-306

Status published

Products (2)

lunary/lunary < 1.4.9

npm/lunary 0 - 1.4.9npm

Published Sep 13, 2024

Tracked Since Feb 18, 2026