CVE-2024-48950 Information

Description

An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup was exposed allowing unauthenticated attackers to bypass CSRF protections and authentication.

Reference

https://docs.logpoint.com/docs/whats-new-in-logpoint/en/latest/ https://servicedesk.logpoint.com/hc/en-us/articles/21968264954525-Authentication-and-CSRF-bypass-leading-to-unauthorized-access https://servicedesk.logpoint.com/hc/en-us/sections/7201103730845-Product-Security