EUVD-2026-24750
GHSA-pmj4-wrc3-26hm
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
Lifecycle Timeline
2DescriptionNVD
A vulnerability in the web application allows standard users to escalate their privileges to those of a super administrator through parameter manipulation, enabling them to access and modify sensitive information.
AnalysisAI
Privilege escalation in Augmentt 1.0 allows authenticated low-privilege users to manipulate HTTP parameters and gain super administrator access, exposing all tenant data and configurations to unauthorized modification. CVSS 9.6 critical severity with scope change indicates cross-tenant impact potential. …
Sign in for full analysis, threat intelligence, and remediation guidance.
RemediationAI
24 hours: Inventory all Augmentt 1.0 deployments and document user privilege levels; implement network segmentation to restrict low-privilege user access to Augmentt administrative interfaces. 7 days: Review audit logs for HTTP parameter manipulation attempts targeting privilege escalation; restrict administrative access to high-assurance authentication methods only; contact Augmentt vendor for patch timeline and interim guidance. …
Sign in for detailed remediation steps.
Share
External POC / Exploit Code
Leaving vuln.today