25Eki
CVE-2024-49757 | Zitadel up to 2.63.4 Registration /ui/login/loginname access control (GHSA-3rmw-76m6-4gjc)
A vulnerability, which was classified as critical, was found in Zitadel up to 2.63.4. This affects an unknown part of the file /ui/login/loginname of the component Registration Handler. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2024-49757. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.