216.73.216.86

CVE-2024-47064

· Published 30/09/2024 15:15 · Modified 04/10/2024 13:51

Labels: CVE-2024-47064 2024-09-30CVE-2024-47064CWE-79[email protected]

Essential information

Published
30/09/2024 15:15
Modified
04/10/2024 13:51
Author
Creator
CISA KEV
No
CWE

Description

Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. If an attacker can trick a logged-in CVAT user into visiting a maliciously-constructed URL, they can initiate any API calls on that user's behalf. This gives the attacker temporary access to all data that the victim user has access to. Upgrade to CVAT 2.19.0 or a later version to fix this issue.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References