Lucene search
MitreVULNRICHMENT:CVE-2024-22513HistoryMar 16, 2024 - 12:00 a.m.
CVE-2024-22513
2024-03-1600:00:00
mitre
github.com
1
cve-2024-22513
information disclosure
djangorestframework-simplejwt
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
46.1%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
djangorestframework-simplejwt version 5.3.1 and before is vulnerable to information disclosure. A user can access web application resources even after their account has been disabled due to missing user validation checks via the for_user method.
Related
packetstorm
packetstorm
Django REST Framework SimpleJWT 5.3.1 Information Disclosure
2024-04-15 00:00:00
veracode
veracode
Missing Authorization Check
2024-03-22 11:44:24
zdt
zdt
djangorestframework-simplejwt 5.3.1 - Information Disclosure Exploit
2024-04-15 00:00:00
nvd
nvd
CVE-2024-22513
2024-03-16 07:15:06
cvelist
cvelist
CVE-2024-22513
2024-03-16 00:00:00
debiancve
debiancve
CVE-2024-22513
2024-03-16 07:15:06
redhatcve
redhatcve
CVE-2024-22513
2024-03-16 18:23:29
github
github
Improper Privilege Management in djangorestframework-simplejwt
2024-03-16 09:30:35
osv
osv
Improper Privilege Management in djangorestframework-simplejwt
2024-03-16 09:30:35
cve
cve
CVE-2024-22513
2024-03-16 07:15:06
ubuntucve
ubuntucve
CVE-2024-22513
2024-03-16 00:00:00
exploitdb
exploitdb
djangorestframework-simplejwt 5.3.1 - Information Disclosure
2024-04-15 00:00:00
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
46.1%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-22513