Chaen

**Name of the Vulnerable Software and Affected Versions** DIRAC versions prior to 8.0.37 **Description** DIRAC is a distributed resource framework. In affected versions, any user could get a token that has been requested by another user/agent. This may expose resources to unintended parties. **Recommendations** For versions prior to 8.0.37, upgrade to release version 8.0.37 to address the issue. There are no known workarounds for this vulnerability. As a temporary workaround, consider restricting access to token requests until the upgrade is applied.