PT-2025-9588 · Serosoft Solutions Pvt · Serosoft Solutions Pvt Ltd Academia Student Information System (Sis) Eagler

Published

2025-03-03

Updated

2025-12-12

CVE-2024-89640

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR version 1.0.118

Description The issue is related to an Azure JWT access token exposure, allowing authenticated attackers to escalate privileges and access sensitive information.

Recommendations For version 1.0.118, consider restricting access to sensitive information and implementing additional authentication measures to prevent privilege escalation until a fix is available. As a temporary workaround, review and limit the use of Azure JWT access tokens to minimize the risk of exploitation.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2024-89640

Affected Products

Serosoft Solutions Pvt Ltd Academia Student Information System (Sis) Eagler

CVE-2024-89640

Related Identifiers

Affected Products

References · 3