nvd-json-data-feeds/CVE-2024/CVE-2024-447xx/CVE-2024-44765.json

{
  "id": "CVE-2024-44765",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2024-11-08T19:15:05.590",
  "lastModified": "2024-11-12T00:15:15.777",
  "vulnStatus": "Received",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An Improper Authorization (Access Control Misconfiguration) vulnerability in MGT-COMMERCE GmbH CloudPanel v2.0.0 to v2.4.2 allows low-privilege users to bypass access controls and gain unauthorized access to sensitive configuration files and administrative functionality."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad de autorizaci\u00f3n incorrecta (configuraci\u00f3n incorrecta del control de acceso) en MGT-COMMERCE GmbH v2.0.0 a v2.4.2 permite a los atacantes escalar privilegios y acceder a informaci\u00f3n confidencial mediante la manipulaci\u00f3n del archivo de configuraci\u00f3n de Nginx."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "http://mgt-commerce.com",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://github.com/EagleTube/CloudPanel/tree/main/CVE-2024-44765",
      "source": "cve@mitre.org"
    }
  ]
}