Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_114301HistoryJun 14, 2024 - 12:00 a.m.
CData Path Traversal
2024-06-1400:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
1
data path traversal
source data
scanner
7.2 High
AI Score
Confidence
Low
CData API Server < 23.4.8844, CData Connect < 23.4.8846, CData Arc < 23.4.8839, CData Sync < 23.4.8843 when running using the embedded Jetty server is affected by a vulnerability allowing an unauthenticated attacker to access unauthorized resources via a specially crafted request.
No source dataReferences
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31848
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31849
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31850
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31851
www.cdata.com/kb/entries/jetty-cve-0324.rst
www.tenable.com/security/research/tra-2024-09
7.2 High
AI Score
Confidence
Low