CVE-2024-29640 | aliyundrive-webdav up to 2.3.3 action_query_qrcode sid Privilege Escalation

CVE-2024-29640 | aliyundrive-webdav up to 2.3.3 action_query_qrcode sid Privilege Escalation

A vulnerability has been found in aliyundrive-webdav up to 2.3.3 and classified as critical. This vulnerability affects the function action_query_qrcode. The manipulation of the argument sid leads to Privilege Escalation. This vulnerability was named CVE-2024-29640. The attack can be initiated remotely. There is no exploit available.