CVE-2024-45815: Backstage Missing Auditor Event

Missing auditor event creation in the Backstage API endpoint. This bypasses the tracing and auditing systems, resulting in missing forensic evidence.

Provally CuratedPublic repositoryMediumMedium confidenceVerifiedApache-2.0

greprules fetch cve-2024-45815-backstage-missing-auditor-event --engine opengrep

Description

Missing auditor event creation in the Backstage API endpoint. This bypasses the tracing and auditing systems, resulting in missing forensic evidence.

License: Apache-2.0
Source context: Public repository
Source: Provally CVE rule catalog
Validation status: Verified
Quality signals: 131 downloads
0 direct131 via packs
· 0 stars · Quality score 70How quality works
Included packs: 2 packs

0 signals from signed-in users.