CVE Vulnerabilities

CVE-2024-37665

Improper Privilege Management

Published: Jun 12, 2024 | Modified: Jun 13, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

An access control issue in Wvp GB28181 Pro 2.0 allows authenticated attackers to escalate privileges to Administrator via a crafted POST request.

Weakness

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Affected Software

Name Vendor Start Version End Version
Gb28181 Wvp-pro 2.0 (including) 2.0 (including)

Potential Mitigations

References