CVE-2024-8509

Name of the Vulnerable Software and Affected Versions Forklift Controller (affected versions not specified)

Description A vulnerability was found in Forklift Controller due to insufficient authorization procedure. The issue arises because there is no verification against the authorization header except to ensure it uses bearer authentication. Without an Authorization header and some form of a Bearer token, a 401 error occurs. The presence of a token value provides a 200 response with the requested information. This could allow a remote attacker to disclose protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.