Security Advisory

CVE-2024-46635

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-30 00:00:00

Last updated 2024-11-14 19:22:06

Assigner mitre

State PUBLISHED

Description

An issue in the API endpoint /AccountMaster/GetCurrentUserInfo of INROAD before v202402060 allows attackers to access sensitive information via a crafted payload to the UserNameOrPhoneNumber parameter.

← Browse all CVEs View on cve.org ↗