CVE-2024-55585

Publication date

2025-06-07 00:00:00

Family

mitre

State

PUBLISHED

Description

In the moPS App through 1.8.618, all users can access administrative API endpoints without additional authentication, resulting in unrestricted read and write access, as demonstrated by /api/v1/users/resetpassword.