LogStare Collector Incorrect Authorization Vulnerability in User Registration Allowing Account Creation
Vulnerability
A vulnerability allowing incorrect authorization has been identified in the UserRegistration component of LogStare Collector. This issue exists in versions through 2.4.1 for both Windows and Linux. The vulnerability allows non-administrative users to create new user accounts by sending a crafted HTTP request.
Impact
Exploitation of this vulnerability enables non-administrative users to create new user accounts, potentially leading to unauthorized access or privileges.
Remediation
Users are advised to update LogStare Collector to version 2.4.2 for both Windows and Linux.
Added: Nov 21, 2025, 7:19 AM
Updated: Nov 21, 2025, 4:34 PM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
0.6exploitability
5.2remediation
7.7relevance
1.2threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.