CVE Catalog

CVE-2026-24611

CriticalCVSS 9.1
Published: Updated: Translated: NVD NIST

Summary

Versions of MetForm Pro <= 3.9.1 have an unauthenticated broken access control vulnerability that may allow attackers to access resources they should not have access to.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive data, potentially leading to privacy and security breaches.

Recommendation

It is recommended to update MetForm Pro to the latest version to mitigate this vulnerability and implement additional access control measures.

Original NVD description (English source)

Unauthenticated Broken Access Control in MetForm Pro <= 3.9.1 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS