Vulnerability Details CVE-2024-3774
aEnrich Technology a+HRD's functionality for front-end retrieval of system configuration values lacks proper restrictions on a specific parameter, allowing attackers to modify this parameter to access certain sensitive system configuration values.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 32.5%
CVSS Severity
CVSS v3 Score 5.3
References