[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-24178":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-29T07:22:50.275Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":24,"related":25,"reserved_at":9,"published_at":26,"modified_at":26,"state":27,"summary":28,"references_raw":35,"kevs":49,"epss":9,"epss_history":50,"metrics":51,"affected":58},"CVE-2026-24178","NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A successful exploit of this vulnerability may lead to privilege escalation, data tampering, information disclosure, code execution, and denial of service.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-639","Authorization Bypass Through User-Controlled Key","The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.","weakness","Incomplete","Base","High",[],[],[],[],[],[],[],"2026-04-28T17:44:51.538Z","Awaiting Analysis",{"cisa_kev":29,"cisa_ransomware":29,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":30,"severity_score":31,"severity_version":32,"severity_source":33,"severity_vector":34,"severity_status":27},false,"critical",9.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[36,41,45],{"url":37,"sources":38,"tags":40},"https://nvd.nist.gov/vuln/detail/CVE-2026-24178",[33,39],"nvd",[],{"url":42,"sources":43,"tags":44},"https://www.cve.org/CVERecord?id=CVE-2026-24178",[33,39],[],{"url":46,"sources":47,"tags":48},"https://nvidia.custhelp.com/app/answers/detail/a_id/5819",[33,39],[],[],[],[52,56],{"source":33,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":53,"cvss_v4_0":9},{"baseScore":31,"baseSeverity":54,"vectorString":34,"impactScore":31,"exploitabilityScore":55},"CRITICAL",10,{"source":39,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":57,"cvss_v4_0":9},{"baseScore":31,"baseSeverity":54,"vectorString":34,"impactScore":31,"exploitabilityScore":55},[59],{"ecosystem":9,"name":60,"vendor":61,"product":62,"cpe_part":63,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":64},"FLARE SDK","nvidia","flare sdk","a",[65],{"version":66,"is_range":29,"range_type":33,"version_start":66,"version_start_type":67,"version_end":66,"version_end_type":67,"fixed_in":9},"All versions prior to 2.7.2","including"]