What the vulnerability does
01Description
A remote attacker may be able to bypass access control of Commend WS203VICM by creating a malicious request.
CVE-2024-21767
CRITICAL
CVE-2024-21767: Commend WS203VICM Improper Access Control
CVSS base score
9.4/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Key dates
02Disclosure timeline
March 1, 2024
CVE published
August 12, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-20912 Gitea: Cross-Repository Authorization Bypass via Release Attachment Linking Leads to Private Attachment Disclosure
CVE-2023-0963 SourceCodester Music Gallery Site POST Request Users.php access control
CVE-2016-8629
CVE-2024-39697 phonenumber panics on parsing crafted phonenumber inputs
CVE-2026-49161 Microsoft PC Manager Security Feature Bypass Vulnerability
