CVE-2024-46412 | THREATINT

Description

Incorrect access control in the prehandle function of Rebuild v3.7.7 allows attackers to bypass authentication via a crafted GET request sent to /commons/ip-location.

PUBLISHED Reserved 2024-09-11 | Published 2025-08-25 | Updated 2025-08-26 | Assigner mitre

References

github.com/...hting/rebuild-vulns/blob/main/rebuild 3.7.7.md

github.com/...-fighting/CVE-vulns/blob/main/rebuild 3.7.5.md

cve.org (CVE-2024-46412)

nvd.nist.gov (CVE-2024-46412)

Download JSON