Missing Authorization Vulnerability Affects WidgetKit
CVE-2024-33908

5.3MEDIUM

Key Information:

What is CVE-2024-33908?

Missing Authorization vulnerability in Themesgrove WidgetKit.This issue affects WidgetKit: from n/a through 2.5.0.

WidgetKit <= 2.5.0

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Dhabaleshwar Das (Patchstack Alliance)