PT-2024-23091 · Datalust · Datalust Seq
Published
2024-03-21
·
Updated
2025-06-17
·
CVE-2024-29866
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Datalust Seq versions before 2023.4.11151
Datalust Seq version 2024 before 2024.1.11146
Description
The issue is related to Incorrect Access Control, where a Project Owner or Organization Owner can escalate to System privileges. This can be exploited through a local network attack vector. There is no current exploit available, but immediate action is recommended to secure the system.
Recommendations
For Datalust Seq versions before 2023.4.11151, upgrade to version 2023.4.11151 or later.
For Datalust Seq version 2024 before 2024.1.11146, upgrade to version 2024.1.11146 or later.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Datalust Seq