Vulnerabilities > CVE-2024-40405 - Unspecified vulnerability in Cybelesoft Thinfinity Workspace 7.0.2.113

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

cybelesoft

NVD

Published: 2024-11-13

Updated: 2025-05-01

Summary

Incorrect access control in Cybele Software Thinfinity Workspace before v7.0.3.109 allows attackers to gain access to a secondary broker via a crafted request.

Vulnerable Configurations

Part	Description	Count
Application	Cybelesoft Cybelesoft Thinfinity Workspace - Cybelesoft Thinfinity Workspace 7.0.2.113	2

References

https://blog.cybelesoft.com/thinfinity-workspace-security-bulletin-nov-2024/