CVE-2024-33818

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-33818
Globitel KSA SpeechLog v8.1 was discovered to contain an Insecure Direct Object Reference (IDOR) via the userID parameter.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://medium.com/%40rajput.thakur/insecure-direct-object-references-cve-2024-33818-86785aa8c969
https://medium.com/%40rajput.thakur/insecure-direct-object-references-cve-2024-33818-86785aa8c969
Configurations

No configuration.

History

27 Mar 2025, 16:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.5
Information

Published : 2024-05-14 15:38

Updated : 2025-03-27 16:15

NVD link : CVE-2024-33818

Mitre link : CVE-2024-33818

CVE.ORG link : CVE-2024-33818

JSON object : View

Products Affected

No product.

CWE
CWE-639

Authorization Bypass Through User-Controlled Key