CVE-2024-3928 – A vulnerability was found in Dromara open-capacity-platform 2.0.1. It has been declared …

18 April 2024

Vuln ID: CVE-2024-3928

Published: 2024-04-18 00:15:07.523

Description: A vulnerability was found in Dromara open-capacity-platform 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /actuator/heapdump of the component auth-server. The manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-261367.

Base Score: 4.3 – MEDIUM

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Source: NVD.NIST.GOV

Date:

18 April 2024

Categorie(s):

NVD

Tag(s):

NVD

A million Australian pubgoers wake up to find personal info listed on leak site2 May 2024
Women rising in cybersecurity roles, but roadblocks remain2 May 2024
AI-driven phishing attacks deceive even the most aware users2 May 2024
Panda Restaurant Corporate Systems Hacked: Customer Data Exposed2 May 2024
NSW club patrons advised to replace ID documents after leak of more than a million records2 May 2024