Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAHACVELIST:CVE-2024-2055
HistoryMar 05, 2024 - 6:56 p.m.

CVE-2024-2055 Artica Proxy Unauthenticated File Manager Vulnerability

2024-03-0518:56:33
CWE-552
CWE-288
AHA
www.cve.org
artica proxy
file manager
web-based interface
authentication
root user
vulnerability

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.2%

JSON

The “Rich Filemanager” feature of Artica Proxy provides a web-based interface for file management capabilities. When the feature is enabled, it does not require authentication by default, and runs as the root user.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Artica Proxy",
    "vendor": "Artica Tech",
    "versions": [
      {
        "status": "affected",
        "version": "4.50"
      },
      {
        "status": "affected",
        "version": "4.40"
      }
    ]
  }
]

Related

nvd 1
prion 1
packetstorm 1
zdt 1
cve 1
korelogic 1
nvd
nvd
CVE-2024-2055
2024-03-05 20:16:01
prion
prion
Design/Logic Flaw
2024-03-05 20:16:00
packetstorm
packetstorm
Artica Proxy 4.40 / 4.50 Authentication Bypass / Privilege Escalation
2024-03-06 00:00:00
zdt
zdt
Artica Proxy 4.40 / 4.50 Authentication Bypass / Privilege Escalation Vulnerability
2024-03-06 00:00:00
cve
cve
CVE-2024-2055
2024-03-05 20:16:01
korelogic
korelogic
Artica Proxy Unauthenticated File Manager Vulnerability
2024-03-05 00:00:00

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.2%

JSON
Related for CVELIST:CVE-2024-2055
nvd1prion1packetstorm1zdt1cve1korelogic1