Lucene search
HistoryMar 05, 2024 - 8:16 p.m.
CVE-2024-2056
artica proxy
service access
network security
loopback interface
tailon
github
root user
tcp port 7050
nvd
cve-2024-2056
Services that are running and bound to the loopback interface on the Artica Proxy are accessible through the proxy service. In particular, the “tailon” service is running, running as the root user, is bound to the loopback interface, and is listening on TCP port 7050. Security issues associated with exposing this network service are documented at gvalkov’s ‘tailon’ GitHub repo. Using the tailon service, the contents of any file on the Artica Proxy can be viewed.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Artica Proxy",
"vendor": "Artica Tech",
"versions": [
{
"status": "affected",
"version": "4.50"
}
]
}
]Related
zdt
zdt
Artica Proxy 4.50 Loopback Service Disclosure Vulnerability
2024-03-06 00:00:00
korelogic
korelogic
Artica Proxy Loopback Services Remotely Accessible Unauthenticated
2024-03-05 00:00:00
cvelist
cvelist
osv
osv
prion
prion
Design/Logic Flaw
2024-03-05 20:16:00
packetstorm
packetstorm
Artica Proxy 4.50 Loopback Service Disclosure
2024-03-06 00:00:00
nvd
nvd
CVE-2024-2056
2024-03-05 20:16:01