CVE-2024-1744

CVSS v4.0

9.2

Critical

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Ariva Computer Accord ORS versions prior to 7.3.2.1

Description The issue allows unauthorized actors to retrieve embedded sensitive data, resulting in exposure of sensitive information. This is a critical vulnerability that affects the ability to protect sensitive data.

Recommendations For versions prior to 7.3.2.1, upgrade to version 7.3.2.1 or later to mitigate the risk of sensitive data exposure.

Fix

IDOR

Missing Authorization

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-639CWE-862CWE-200

Related Identifiers

CVE-2024-1744

Affected Products

Ariva Computer Accord Ors

CVE-2024-1744

Weakness Enumeration

Related Identifiers

Affected Products

References · 13