CVE-2024-37453

Name of the Vulnerable Software and Affected Versions ProfileGrid versions through 5.8.7

Description The issue is related to a Missing Authorization vulnerability in ProfileGrid User Profiles, allowing exploitation of incorrectly configured access control security levels.

Recommendations For versions through 5.8.7, update to a version later than 5.8.7 to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of the ProfileGrid User Profiles to minimize the risk of exploitation.