CVE-2024-42464

Name of the Vulnerable Software and Affected Versions upKeeper Manager versions through 5.1.9

Description An Authorization Bypass Through User-Controlled Key issue exists in upKeeper Manager, allowing an attacker to utilize REST's trust in the system resource to obtain sensitive data.

Recommendations For versions through 5.1.9, update to a version later than 5.1.9 to resolve the issue. As a temporary workaround, consider restricting access to REST endpoints to minimize the risk of exploitation.