CVE-2024-34520 Information

Description

An authorization bypass vulnerability exists in the Mavenir SCE Application Provisioning Portal version PORTAL-LBS-R_1_0_24_0 which allows an authenticated ‘guest’ user to perform unauthorized administrative actions such as accessing the ‘add user’ feature by bypassing client-side access controls.

Reference

https://github.com/whitewhale-dmb/Vulnerability-Research/tree/main/CVE-2024-34520