CVE-2024-49373

MEDIUM Year: 2024
CVSS v3 Score
4.3
Medium
Weakness Type
CWE-653
View all →

Vulnerability Description

No Fuss Computing Centurion ERP is open source enterprise resource planning (ERP) software. Prior to version 1.2.1, an authenticated user can view projects within organizations they are not apart of. Version 1.2.1 fixes the problem.

Related Vulnerabilities

CVE-2025-21590

MEDIUM
CVSS:4.4(Medium)

An Improper Isolation or Compartmentalization vulnerability in the kernel of Juniper Networks Junos OS allows a local attacker with high privileges to compromise the integrity of the device. A local a...

CWE-6532025

CVE-2023-1636

MEDIUM
CVSS:5.0(Medium)

A vulnerability was found in OpenStack Barbican containers. This vulnerability is only applicable to deployments that utilize an all-in-one configuration. Barbican containers share the same CGROUP, US...

CWE-6532023

CVE-2025-26393

MEDIUM
CVSS:5.4(Medium)

SolarWinds Service Desk is affected by a broken access control vulnerability. The issue allows authenticated users to escalate privileges, leading to unauthorized data manipulation.

CWE-6532025

CVE-2023-29580

MEDIUM
CVSS:5.5(Medium)

yasm 1.3.0.55.g101bc was discovered to contain a segmentation violation via the component yasm_expr_create at /libyasm/expr.c.

CWE-6532023

CVE-2024-0137

MEDIUM
CVSS:5.5(Medium)

NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to untrusted code running in the host’s network namespace. This vulnerability...

CWE-6532024

CVE-2024-35425

MEDIUM
CVSS:5.5(Medium)

vmir e8117 was discovered to contain a segmentation violation via the function_prepare_parse function at /src/vmir_function.c.

CWE-6532024