Username Enumeration Vulnerability in Logpoint Product by Logpoint
CVE-2024-30176

Currently unrated

Key Information:

Vendor: Logpoint
Status: Logpoint
Vendor: CVE Published:; 1 May 2024

What is CVE-2024-30176?

A vulnerability exists in Logpoint versions before 7.4.0 that allows attackers to enumerate valid usernames through publicly accessible URLs of shared widgets. This could potentially lead to unauthorized access to user accounts and personal information, posing significant security risks for affected organizations.

References

https://logpoint.com

https://servicedesk.logpoint.com/hc/en-us/articles/184351...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 1, 2024
Vulnerability Reserved
Mar 24, 2024