CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-51382

Cross-Site Request Forgery (CSRF) vulnerability in JATOS v3.9.3 allows an attacker to reset the administrator's password. This critical security flaw can result in unauthorized access to the platform, enabling attackers to hijack admin accounts and compromise the integrity and security of the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.5%

CVSS Severity

CVSS v3 Score 8.4

References

https://hacking-notes.medium.com/cve-2024-51382-jatos-v3-9-3-csrf-admin-password-reset-1adeff0386ed

Products affected by CVE-2024-51382

Jatos » Jatos » Version: 3.9.3

cpe:2.3:a:jatos:jatos:3.9.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-51382

Products

Pricing

Contact Us