Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2024-36267
HistoryMay 30, 2024 - 6:15 a.m.

CVE-2024-36267

2024-05-3006:15:09
[email protected]
web.nvd.nist.gov
27
redmine dmsf plugin
path traversal
vulnerability
arbitrary files
server vulnerability

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Path traversal vulnerability exists in Redmine DMSF Plugin versions prior to 3.1.4. If this vulnerability is exploited, a logged-in user may obtain or delete arbitrary files on the server (within the privilege of the Redmine process).

Affected configurations

Vulners
Node
kontronredmine_dmsf_pluginRange<3.1.4

CNA Affected

[
  {
    "vendor": "Kontron",
    "product": "Redmine DMSF Plugin",
    "versions": [
      {
        "version": "prior to 3.1.4",
        "status": "affected"
      }
    ]
  }
]

Related

jvn 1
cvelist 1
nvd 1
vulnrichment 1
jvn
jvn
JVN#22182715: Redmine DMSF Plugin vulnerable to path traversal
2024-05-29 00:00:00
cvelist
cvelist
CVE-2024-36267
2024-05-30 05:33:45
nvd
nvd
CVE-2024-36267
2024-05-30 06:15:09
vulnrichment
vulnrichment
CVE-2024-36267
2024-05-30 05:33:45

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for CVE-2024-36267
jvn1cvelist1nvd1vulnrichment1