Lucene search
MitreCVE-2024-40348HistoryJul 20, 2024 - 4:15 a.m.
CVE-2024-40348
2024-07-2004:15:05
CWE-22
mitre
web.nvd.nist.gov
32
bazaar v1.4.3
unauthenticated
directory traversal
component issue
cve-2024-40348
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
AI Score
7
Confidence
High
EPSS
0.001
Percentile
22.4%
An issue in the component /api/swaggerui/static of Bazaar v1.4.3 allows unauthenticated attackers to execute a directory traversal.
Related
githubexploit
githubexploit
Exploit for CVE-2024-40348
2024-07-24 16:13:24
Exploit for CVE-2024-40348
2024-07-21 00:54:55
nvd
nvd
CVE-2024-40348
2024-07-20 04:15:05
cvelist
cvelist
CVE-2024-40348
2024-07-20 00:00:00
vulnrichment
vulnrichment
CVE-2024-40348
2024-07-20 00:00:00
nuclei
nuclei
Bazarr < 1.4.3 - Arbitrary File Read
2024-07-18 18:52:31
openvas
openvas
Generic HTTP Directory Traversal (Web Dirs) - Active Check
2021-07-22 00:00:00
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
AI Score
7
Confidence
High
EPSS
0.001
Percentile
22.4%
Related for CVE-2024-40348