CVE-2024-13241

CVE-2024-13241: Open Social - Moderately critical - Information Disclosure - SA-CONTRIB-2024-005

Vendor Drupal

Product Open Social

Weakness CWE-285

Published January 9, 2025

Last update January 10, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Improper Authorization vulnerability in Drupal Open Social allows Collect Data from Common Resource Locations.This issue affects Open Social: from 0.0.0 before 12.0.5.

Key dates

02Disclosure timeline

January 9, 2025 CVE published

January 10, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-13241

Related vulnerabilities

04Related CVE

CVE-2022-0027 Cortex XSOAR: Incorrect Authorization Vulnerability When Generating Reports CVE-2024-11306 Altenergy Power Control Software database improper authorization CVE-2021-25351 CVE-2025-11521 Astra Security Suite – Firewall & Malware Scan <= 0.2 - Unauthenticated Arbitrary File Upload CVE-2022-30757