Lucene search
HistoryMay 03, 2024 - 8:15 a.m.
CVE-2024-32810
shortpixel
authorization
vulnerability
cve-2024-32810
nvd
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Missing Authorization vulnerability in ShortPixel ShortPixel Critical CSS.This issue affects ShortPixel Critical CSS: from n/a through 1.0.2.
Affected configurations
Node
shortpixelshortpixel_adaptive_imagesRange≤1.0.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| shortpixel | shortpixel_adaptive_images | * | cpe:2.3:a:shortpixel:shortpixel_adaptive_images:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "shortpixel-critical-css",
"product": "ShortPixel Critical CSS",
"vendor": "ShortPixel",
"versions": [
{
"changes": [
{
"at": "1.0.3",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.0.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2024-32810
2024-05-03 08:15:07
wpvulndb
wpvulndb
ShortPixel Critical CSS < 1.0.3 - Missing Authorization
2024-04-29 00:00:00
vulnrichment
vulnrichment
wordfence
wordfence
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
6.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-32810