CVE-2024-22047

Published Jan 4, 2024

Last updated 11 days ago

Overview

Description
A race condition exists in Audited 4.0.0 to 5.3.3 that can result in an authenticated user to cause audit log entries to be attributed to another user.
Source
disclosure@vulncheck.com
NVD status
Modified

Risk scores

CVSS 3.1

Type
Primary
Base score
3.1
Impact score
1.4
Exploitability score
1.6
Vector string
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
Severity
LOW

Weaknesses

disclosure@vulncheck.com
CWE-362
nvd@nist.gov
CWE-362

Social media

Hype score
Not currently trending

Configurations