CVE-2024-47073
UNKNOWN
Published 2024-11-07T17:31:23.535Z
Actions:
Expert Analysis
Professional remediation guidance
Get tailored security recommendations from our analyst team for CVE-2024-47073. We'll provide specific mitigation strategies based on your environment and risk profile.
No CVSS data available
Description
DataEase is an open source data visualization analysis tool that helps users quickly analyze data and gain insights into business trends. In affected versions a the lack of signature verification of jwt tokens allows attackers to forge jwts which then allow access to any interface. The vulnerability has been fixed in v2.10.2 and all users are advised to upgrade. There are no known workarounds for this vulnerability.
Available Exploits
No exploits available for this CVE.
Related News
No news articles found for this CVE.
Affected Products
Published: 2024-11-07T17:31:23.535Z
Last Modified: 2024-11-21T16:23:47.430Z
Copied to clipboard!