CVE Vulnerabilities

CVE-2024-42759

DEPRECATED: Authentication Bypass Issues

Published: Sep 09, 2024 | Modified: Jul 03, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

An issue in Ellevo v.6.2.0.38160 allows a remote attacker to escalate privileges via the /api/usuario/cadastrodesuplente endpoint.

Weakness

This weakness has been deprecated because it covered redundant concepts already described in CWE-287.

Affected Software

Name Vendor Start Version End Version
Ellevo Ellevo 6.2.0.38160 (including) 6.2.0.38160 (including)

References