CVE-2024-7266

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Aug 7, 2024

Updated: Oct 10, 2024

CWE ID 863

Summary

CVE-2024-7266 is a user management vulnerability affecting Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP. This flaw enables logged-in users to access a list of all users in the system, including those from other organizations. This issue poses a significant risk to data privacy and unauthorized access. Affected versions include EZD RP from versions 15 before 15.84, from 16 before 16.15, and from 17 before 17.2. It is crucial that users update their systems to the latest versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Research and Academic Computer Network

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xVm31t
https://www.cve.org/CVERecord?id=CVE-2024-7266
https://nvd.nist.gov/vuln/detail/CVE-2024-7266

Back to Vulnerability Database

CVE-2024-7266

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations