CVE-2024-37282

It was identified that under certain specific preconditions, an API key that was originally created with a specific privileges could be subsequently used to create new API keys that have elevated privileges. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt