Vulnerabilities > PTC > Thingworx > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-08-27 CVE-2024-40395 Authorization Bypass Through User-Controlled Key vulnerability in PTC Thingworx 9.5.0
An Insecure Direct Object Reference (IDOR) in PTC ThingWorx v9.5.0 allows attackers to view sensitive information, including PII, regardless of access level.
network
low complexity
ptc CWE-639
6.5