Cross-Site Request Forgery Vulnerability in Sunbird DCIM dcTrack

CVE-2024-37774

What is CVE-2024-37774?

CVE-2024-37774 is a Cross-Site Request Forgery (CSRF) vulnerability found in Sunbird DCIM's dcTrack version 9.1.2. This vulnerability allows authenticated attackers to manipulate admin-level user sessions, leading them to perform unauthorized sensitive actions within the application's admin interface. By exploiting this flaw, attackers can escalate their privileges and potentially compromise the security of the entire dcTrack system, posing a significant risk to organizations relying on this product. Timely patching and version upgrades are strongly recommended to mitigate these risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References