Lucene search

CVE-2024-3829 Arbitrary File Read and Write during Snapshot Recovery in qdrant/qdrant

🗓️ 03 Jun 2024 10:53:05Reported by @huntr_aiType

qdrant/qdrant version 1.9.0-dev arbitrary file read and write vulnerability

Reporter	Title	Published	Views	Family All 8
Veracode	Arbitrary File Read And Write	6 Jun 202409:50	–	veracode
Github Security Blog	qdrant input validation failure	3 Jun 202412:30	–	github
OSV	CVE-2024-3829	3 Jun 202410:15	–	osv
OSV	GHSA-7M75-X27W-R52R qdrant input validation failure	3 Jun 202412:30	–	osv
NVD	CVE-2024-3829	3 Jun 202410:15	–	nvd
RedhatCVE	CVE-2024-3829	5 Feb 202510:03	–	redhatcve
Vulnrichment	CVE-2024-3829 Arbitrary File Read and Write during Snapshot Recovery in qdrant/qdrant	3 Jun 202410:05	–	vulnrichment
CVE	CVE-2024-3829	3 Jun 202410:15	–	cve

[
  {
    "vendor": "qdrant",
    "product": "qdrant/qdrant",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "v1.9.0",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
huntr	www.huntr.com/bounties/abd9c906-75ee-4d84-b76d-ce1386401e08
github	www.github.com/qdrant/qdrant/commit/ee7a31ec3459a6a4219200234615c1817ab82260

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Jun 2024 10:05Current

9.2High risk

Vulners AI Score9.2

CVSS39.8

EPSS0.00043

CWE-20