CVE-2024-4739

Name of the Vulnerable Software and Affected Versions: MXsecurity versions v1.1.0 and prior

Description: The issue is related to the lack of access restriction to a resource from unauthorized users. This allows an attacker, who has acquired a valid authenticator, to pose as an authorized user and successfully access the resource. The vulnerability is also associated with the use of dangerous methods or functions, which can enable an attacker to elevate their privileges.

Recommendations: For MXsecurity versions v1.1.0 and prior, consider restricting access to the resource until a patch is available. As a temporary workaround, limit the use of authenticators to minimize the risk of unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.