CVE-2024-55585
BaseFortify
Publication date: 2025-06-07
Last updated on: 2025-06-13
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-306 | The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2024-55585 is a critical security vulnerability in the moPS App (up to version 1.8.618) that allows all users to access administrative API endpoints without any additional authentication. This means that any user, even unprivileged ones, can perform unrestricted read and write operations on the system's administrative functions. The vulnerability stems from missing proper access control, enabling attackers to manipulate critical data, escalate privileges, exfiltrate data, and potentially take over the entire system. [1, 2]
How can this vulnerability impact me? :
This vulnerability can have severe impacts including unauthorized data manipulation, privilege escalation, data exfiltration, and potentially full system takeover. For organizations relying on the moPS App, especially those involved in civil protection and disaster control, this could lead to severe disruptions in emergency management operations, compromising safety and operational integrity. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by attempting to access the administrative API endpoints of the moPS App without authentication and checking for unrestricted read and write access. Tools such as curl can be used to send requests to these endpoints to verify if authentication is required. For example, using curl to send GET or POST requests to known admin API URLs and observing if the responses allow data manipulation or retrieval without credentials. Additionally, network traffic analysis tools like mitmproxy can be used to monitor API calls and detect unauthorized access attempts. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include updating the moPS App server to a version above 1.8.618 where the vulnerability is fixed, verifying all contact data, and resetting all passwords to prevent potential compromise. Ensuring proper access control and authentication mechanisms are in place for administrative API endpoints is critical. [2]