admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-6534.md
0xMarcio d4008b737b Update CVE sources 2024-08-15 18:54
2024-08-15 18:54:34 +00:00

18 lines
886 B
Markdown
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

### [CVE-2024-6534](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6534)
![](https://img.shields.io/static/v1?label=Product&message=Directus&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%2010.13.0%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-639%20Authorization%20Bypass%20Through%20User-Controlled%20Key&color=brighgreen)
### Description
Directus v10.13.0 allows an authenticated external attacker to modify presets created by the same user to assign them to another user. This is possible because the application only validates the user parameter in the 'POST /presets' request but not in the PATCH request. When chained with CVE-2024-6533, it could result in account takeover.
### POC
#### Reference
- https://fluidattacks.com/advisories/capaldi
#### Github
No PoCs found on GitHub currently.
Reference in New Issue View Git Blame Copy Permalink