PT-2024-35934 · Sprout Invoices · Sprout Invoices Client Invoicing
Manab Jyoti Dowarah
·
Published
2024-12-09
·
Updated
2024-12-09
·
CVE-2024-53819
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Sprout Invoices Client Invoicing by Sprout Invoices versions through 20.8.0
Description:
The issue is related to a Missing Authorization vulnerability. This allows for unauthorized access.
Recommendations:
For versions through 20.8.0, update to a version later than 20.8.0 to resolve the issue.
At the moment, there is no information about other mitigation measures for this issue.
Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sprout Invoices Client Invoicing