Logo
Sign in
  1. Logpoint Service Desk
  2. Products Hub
  3. Product Security

Unauthorized information access due to inadequate access controls

Avatar Bipin Rimal
April 08, 2025 09:09
Follow

Advisory ID: LVD-2024-016

CVSSv 4.0 Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

CVSSv 4.0 Base Score: 6.9

Severity: Medium

CVE: CVE-2025-26789

CWE: CWE-1336

Date Published: 2025-01-28

Description:

A vulnerability caused by limited access controls allowed li-admin users to access sensitive information about AgentX Manager in Logpoint deployment.

Affected Product:

AgentX Versions before v1.5.0

Solution:

Upgrade to AgentX v1.5.0 

Comments

Article is closed for comments.

Related articles

  • AgentX Manager v1.6.0
  • Server-Side Template Injection (SSTI) in Search Template Dashboard Queries
  • Logpoint response on CVE-2024-3094
  • Server-Side Request Forgery (SSRF) on SOAR, results in authentication bypass
  • Arbitrary file deletion through URL Injection to SAML SSO-URL Response
Was this article helpful?
0 out of 0 found this helpful
Privacy policy    EULA    Terms of service   
Copyright © , Logpoint. All rights reserved.

Note: We use cookies that are essential for the smooth functioning of our website.