Vulnerability Description
Unifiedtransform v2.X is vulnerable to Incorrect Access Control. Unauthorized users can access and manipulate endpoints intended exclusively for administrative use. This issue specifically affects teacher/edit/{id}.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Changeweb | Unifiedtransform | 2.0 |
Related Weaknesses (CWE)
References
- https://drive.google.com/file/d/14Or6QIpOeLEqdFm1mwxdE_NNCOwMmcFc/viewExploit
- https://www.getastra.com/blog/vulnerability/improper-access-control-in-school-maTechnical Description
- https://drive.google.com/file/d/14Or6QIpOeLEqdFm1mwxdE_NNCOwMmcFc/viewExploit
FAQ
What is CVE-2024-53573?
CVE-2024-53573 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Unifiedtransform v2.X is vulnerable to Incorrect Access Control. Unauthorized users can access and manipulate endpoints intended exclusively for administrative use. This issue specifically affects tea...
How severe is CVE-2024-53573?
CVE-2024-53573 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2024-53573?
Check the references section above for vendor advisories and patch information. Affected products include: Changeweb Unifiedtransform.