Privilege Escalation Vulnerability in JimuReport by JeecgBoot
CVE-2024-44893

9.8CRITICAL

Key Information:

Vendor: JeecgBoot
Status: JimuReport
Vendor: CVE Published:; 10 September 2024

What is CVE-2024-44893?

An issue within the JimuReport v1.7.8 application allows an attacker to escalate user privileges. This exploit can be triggered through specially crafted GET requests, enabling unauthorized access and manipulation of the affected system's resources.

References

https://github.com/jeecgboot/JimuReport/issues/2904

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 10, 2024
Vulnerability Reserved
Aug 21, 2024

CVE-2024-44893 Data

JSON