9Şub
CVE-2024-25106 | OpenObserve up to 0.7.x {email_id} access control (GHSA-3m5f-9m66-xgp7)
A vulnerability has been found in OpenObserve up to 0.7.x and classified as critical. Affected by this vulnerability is an unknown functionality of the file /api/{org_id}/users/{email_id}. The manipulation leads to improper access controls. This vulnerability is known as CVE-2024-25106. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.