CVE-2024-46609 | Thecosy IceCMS up to 3.4.7 UserController.java CheckVip access control

CVE-2024-46609 | Thecosy IceCMS up to 3.4.7 UserController.java CheckVip access control

A vulnerability was found in Thecosy IceCMS up to 3.4.7. It has been declared as critical. This vulnerability affects the function CheckVip of the file UserController.java. The manipulation leads to improper access controls. This vulnerability was named CVE-2024-46609. The attack needs to be initiated within the local network. There is no exploit available.