Home

Description

Incorrect access control in Sunbird DCIM dcTrack v9.1.2 allows attackers to create or update a ticket with a location which bypasses an RBAC check.

PUBLISHED Reserved 2024-06-10 | Published 2024-12-16 | Updated 2024-12-17 | Assigner mitre

References

dctrack.com

s3.us-east-1.amazonaws.com/...cTrack_9.2.0_Release_Notes.pdf

cve.org (CVE-2024-37775)

nvd.nist.gov (CVE-2024-37775)

Download JSON