PT-2026-43134 · Newses · Newses

John P

+1

·

Published

2026-05-25

·

Updated

2026-06-04

·

CVE-2026-24586

CVSS v3.1

5.4

Medium

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Name of the Vulnerable Software and Affected Versions Newses versions prior to 2.0.0.78
Description A missing authorization issue allows for the exploitation of incorrectly configured access control security levels.
Recommendations Update to a version newer than 2.0.0.77.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-24586

Affected Products

Newses