CVE-2024-24825
09.02.2024, 00:15
DIRAC is a distributed resource framework. In affected versions any user could get a token that has been requested by another user/agent. This may expose resources to unintended parties. This issue has been addressed in release version 8.0.37. Users are advised to upgrade. There are no known workarounds for this vulnerability.Enginsight
| Vendor | Product | Version |
|---|---|---|
| diracgrid | dirac | 𝑥 < 8.0.37 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References