CVE-2024-37774
CVE-2024-37774CVE-2024-37774
sunbirddcim / dctrack
Description
A Cross-Site Request Forgery (CSRF) in Sunbird DCIM dcTrack v9.1.2 allows authenticated attackers to escalate their privileges by forcing an Administrator user to perform sensitive requests in some admin screens.
Scoring
| CVSS | 8.0 () |
| Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
| Last modified | 2026-07-05 |