CVE-2024-54222 — Missing Authorization in Solutions Seraphinite Accelerator

CWE-862 — Missing Authorization4 documents4 sources

Severity

4.3MEDIUMNVD

EPSS

0.0%

top 92.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Seraphinite Solutions Seraphinite Accelerator

Timeline

PublishedFeb 20

Description

Missing Authorization vulnerability in Seraphinite Solutions Seraphinite Accelerator seraphinite-accelerator allows Retrieve Embedded Sensitive Data.This issue affects Seraphinite Accelerator: from n/a through <= 2.22.15.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages1 packages

▶CVEListV5seraphinite_solutions/seraphinite_accelerator2.22.15

🔴Vulnerability Details

GHSA

GHSA-c88w-mqr9-prrr: Missing Authorization vulnerability in Seraphinite Solutions Seraphinite Accelerator seraphinite-accelerator allows Retrieve Embedded Sensitive Data↗2026-02-20

▶

CVEList

WordPress Seraphinite Accelerator plugin <= 2.22.15 - Authenticated Sensitive Data Exposure vulnerability↗2026-02-20

▶

🕵️Threat Intelligence

Wiz

CVE-2024-54222 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶