CVE-2024-45787
Information Disclosure Vulnerability
This vulnerability exists in Reedos aiM-Star version 2.0.1 due to transmission of sensitive information in plain text in certain API endpoints. An authenticated remote attacker could exploit this vulnerability by manipulating a parameter through API request URL and intercepting response of the API request leading to exposure of sensitive information belonging to other users.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N
Productos afectados
Reedos Software Solutions · Mutual Fund Distribution Product (aiM-Star)¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →