nvd-json-data-feeds/CVE-2024/CVE-2024-366xx/CVE-2024-36676.json

{
  "id": "CVE-2024-36676",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2024-07-09T22:15:02.467",
  "lastModified": "2024-07-11T13:05:54.930",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Incorrect access control in BookStack before v24.05.1 allows attackers to confirm existing system users and perform targeted notification email DoS via public facing forms."
    },
    {
      "lang": "es",
      "value": "El control de acceso incorrecto en BookStack anterior a v24.05.1 permite a los atacantes confirmar los usuarios existentes del sistema y realizar notificaciones de DoS por correo electr\u00f3nico dirigidas a trav\u00e9s de formularios p\u00fablicos."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://github.com/BookStackApp/BookStack/issues/4993",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://github.com/BookStackApp/BookStack/releases/tag/v24.05.1",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://www.bookstackapp.com/blog/bookstack-release-v24-05-1/",
      "source": "cve@mitre.org"
    }
  ]
}