Skip to main content

Opencti CVE-2024-45805

MEDIUM
Information Exposure (CWE-200)
2024-12-26 security-advisories@github.com
4.3
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
4.3 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None

Lifecycle Timeline

1
CVE Published
Dec 26, 2024 - 22:15 nvd
MEDIUM 4.3

DescriptionNVD

OpenCTI is an open-source cyber threat intelligence platform. Before 6.3.0, general users can access information that can only be accessed by users with access privileges to admin and support information (SETTINGS_SUPPORT). This is due to inadequate access control for support information (http://<opencti_domain>/storage/get/support/UUID/UUID.zip), and that the UUID is available to general users using an attached query (logs query). This vulnerability is fixed in 6.3.0.

AnalysisAI

OpenCTI is an open-source cyber threat intelligence platform. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as Exposure of Sensitive Information (CWE-200), which allows attackers to access sensitive data that should not be disclosed. OpenCTI is an open-source cyber threat intelligence platform. Before 6.3.0, general users can access information that can only be accessed by users with access privileges to admin and support information (SETTINGS_SUPPORT). This is due to inadequate access control for support information (http://<opencti_domain>/storage/get/support/UUID/UUID.zip), and that the UUID is available to general users using an attached query (logs query). This vulnerability is fixed in 6.3.0. Affected products include: Citeum Opencti. Version information: Before 6.3.0.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Minimize information in error messages, implement proper access controls, encrypt sensitive data at rest and in transit.

CVE-2020-37041 HIGH POC
7.5 Jan 30

OpenCTI 3.3.1 is vulnerable to a directory traversal attack via the static/css endpoint. An unauthenticated attacker can

CVE-2026-27960 CRITICAL
9.8 May 05

Unauthenticated attackers can escalate privileges in OpenCTI 6.6.0-6.9.12 by impersonating any user account, including t

CVE-2020-37044 MEDIUM POC
5.4 Jan 30

OpenCTI 3.3.1 is vulnerable to a reflected cross-site scripting (XSS) attack via the /graphql endpoint. An attacker can

CVE-2025-24977 CRITICAL
9.1 May 05

OpenCTI is an open cyber threat intelligence (CTI) platform. Rated critical severity (CVSS 9.1), this vulnerability is r

CVE-2024-45404 HIGH
8.1 Dec 12

OpenCTI is an open-source cyber threat intelligence platform. Rated high severity (CVSS 8.1), this vulnerability is remo

CVE-2024-26139 HIGH
8.1 May 23

OpenCTI is an open source platform allowing organizations to manage their cyber threat intelligence knowledge and observ

CVE-2022-30290 HIGH
7.5 Jul 05

In OpenCTI through 5.2.4, a broken access control vulnerability has been identified in the profile endpoint. Rated high

CVE-2026-44730 HIGH
7.2 May 26

Privilege escalation in OpenCTI prior to 6.9.7 allows an organization admin to gain elevated platform-wide privileges by

CVE-2026-35210 HIGH
7.1 Jul 08

Authorization bypass in OpenCTI prior to version 7.260326.0 lets any authenticated user holding the KNOWLEDGE_KNUPDATE p

CVE-2025-61781 HIGH
7.1 Jan 05

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.

CVE-2026-35211 MEDIUM
6.5 Jul 08

Elasticsearch Painless script injection via OpenCTI's GraphQL API allows any authenticated user holding the KNOWLEDGE ca

CVE-2026-21886 MEDIUM
6.5 Mar 17

OpenCTI versions prior to 6.9.1 contain an authorization bypass vulnerability in the GraphQL mutation 'IndividualDeletio

Share

CVE-2024-45805 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy