Hard-coded Credentials Vulnerability in FOLIO mod-data-export-spring

Hard-coded Credentials Vulnerability in FOLIO mod-data-export-spring

CVE-2024-23687 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Hard-coded credentials in FOLIO mod-data-export-spring versions before 1.5.4 and from 2.0.0 to 2.0.2 allows unauthenticated users to access critical APIs, modify user data, modify configurations including single-sign-on, and manipulate fees/fines.

Learn more about our Api Penetration Testing.