Sismart · Sismart · CVE-2024-48217
**Name of the Vulnerable Software and Affected Versions**
SiSMART version 7.4.0
**Description**
The issue is related to an Insecure Direct Object Reference (IDOR) in the dashboard of SiSMART. This flaw allows attackers to execute a horizontal-privilege escalation.
**Recommendations**
For SiSMART version 7.4.0, consider disabling access to the dashboard until a patch is available to prevent horizontal-privilege escalation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.