Authentication Bypass in Logpoint Affects Security Modules
CVE-2024-48953
Currently unrated
What is CVE-2024-48953?
A security vulnerability in Logpoint prior to version 7.5.0 allows unauthenticated users to exploit endpoints designed for creating, editing, and deleting third-party authentication modules. The flaw arises from inadequate authorization checks, enabling malicious actors to register unauthorized authentication plugins, leading to potential unauthorized access and further exploitation of the system.