CVE-2024-48920

Published Oct 17, 2024

Last updated a month ago

CVSS critical 9.1

Overview

Description
PutongOJ is online judging software. Prior to version 2.1.0-beta.1, unprivileged users can escalate privileges by constructing requests. This can lead to unauthorized access, enabling users to perform admin-level operations, potentially compromising sensitive data and system integrity. This problem has been fixed in v2.1.0.beta.1. As a workaround, one may apply the patch from commit `211dfe9` manually.
Source
security-advisories@github.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
9.1
Impact score
5.2
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Severity
CRITICAL

Weaknesses

security-advisories@github.com
CWE-306

Social media

Hype score
Not currently trending

  1. CVE-2024-48920 (CVSS:9.1, CRITICAL) is Awaiting Analysis. PutongOJ is online judging software. Prior to version 2.1.0-beta.1, unprivileged users can escalate privileges by constr..https://t.co/UIsZsOjaUv #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre

    @cracbot

    22 Oct 2024

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. [CVE-2024-48920: CRITICAL] Cybersecurity alert: PutongOJ software v2.1.0-beta.1 fixed escalation privilege vulnerability. Apply manual patch `211dfe9` to secure systems from unauthorized access risks.#cybersecurity,#vulnerability https://t.co/uUY8zUnRdj https://t.co/w1AsyW5VGf

    @CveFindCom

    19 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 🚨🔒 ¡Nueva vulnerabilidad crítica! 🔍 CVE-2024-48920 afecta a PutongOJ, una plataforma para evaluar código en línea. Un error de configuración permite que usuarios sin privilegios escalen sus derechos y realicen acciones de administrador. Esto puede comprometer datos sensibles e

    @antu_tech

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. CVE-2024-48920 PutongOJ is online judging software. Prior to version 2.1.0-beta.1, unprivileged users can escalate privileges by constructing requests. This can lead to unauthorized… https://t.co/0u87dq47lz

    @CVEnew

    363 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

References