CVEs

Please report vulnerabilities to Ironman Software. To learn about our vulnerability response policy, click here.

CVE TBD - 10/17/2024 - Privilege escalation and information disclosure

Description

Version 5.0.0 through 5.0.11 are vulnerable to an exploit that allows an authenticated attacker to elevate their privileges and view job information.

CVSS v4.0 Score: 7.4 / High

This exploit allows an authenticated attacker to take control of the platform via a vulnerability in the admin console.