CVE-2024-2134

Name of the Vulnerable Software and Affected Versions Bdtask Hospita AutoManager up to 20240223

Description A vulnerability has been found in the Investigation Report Handler component, affecting unknown code of the file "/investigation/delete/". This issue leads to cross-site request forgery and can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted about this disclosure but did not respond.

Recommendations For Bdtask Hospita AutoManager up to 20240223, consider disabling access to the "/investigation/delete/" file as a temporary workaround until a patch is available. Restrict access to the Investigation Report Handler component to minimize the risk of exploitation. Avoid using the affected component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.