{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T19:15:23.312","vulnerabilities":[{"cve":{"id":"CVE-2024-48920","sourceIdentifier":"security-advisories@github.com","published":"2024-10-17T15:15:13.603","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"PutongOJ is online judging software. Prior to version 2.1.0-beta.1, unprivileged users can escalate privileges by constructing requests. This can lead to unauthorized access, enabling users to perform admin-level operations, potentially compromising sensitive data and system integrity. This problem has been fixed in v2.1.0.beta.1. As a workaround, one may apply the patch from commit `211dfe9` manually."},{"lang":"es","value":"PutongOJ es un software de evaluación en línea. Antes de la versión 2.1.0-beta.1, los usuarios sin privilegios podían escalar privilegios mediante la creación de solicitudes. Esto puede provocar un acceso no autorizado, lo que permite a los usuarios realizar operaciones de nivel de administrador, lo que podría comprometer la información confidencial y la integridad del sistema. Este problema se ha solucionado en la versión v2.1.0.beta.1. Como workaround, se puede aplicar el parche de el commit `211dfe9` de forma manual."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-306"}]}],"references":[{"url":"https://github.com/acm309/PutongOJ/commit/211dfe9ebf1c6618ce5396b0338de4f9b580715e#diff-782628b47d666d5d551e040815ca3f80c0704397258718f0e0f31164608ea7beL118-R120","source":"security-advisories@github.com"},{"url":"https://github.com/acm309/PutongOJ/releases/tag/v2.1.0-beta.1","source":"security-advisories@github.com"},{"url":"https://github.com/acm309/PutongOJ/security/advisories/GHSA-gj6h-73c5-xw6f","source":"security-advisories@github.com"}]}}]}