Lucene search

CVE-2024-23657

🗓️ 05 Aug 2024 21:37:15Reported by [email protected]Type

Nuxt Devtools authentication vulnerability allows for unauthorized access and data exfiltratio

Reporter	Title	Published	Views	Family All 9
Cvelist	CVE-2024-23657 Path Traversal: '../filedir' in Nuxt Devtools	5 Aug 202420:27	–	cvelist
OSV	GHSA-RCVG-RGF7-PPPV Nuxt Devtools has a Path Traversal: '../filedir'	5 Aug 202419:48	–	osv
Veracode	Path Traversal	6 Aug 202407:01	–	veracode
Github Security Blog	Nuxt Devtools has a Path Traversal: '../filedir'	5 Aug 202419:48	–	github
CVE	CVE-2024-23657	5 Aug 202421:15	–	cve
Vulnrichment	CVE-2024-23657 Path Traversal: '../filedir' in Nuxt Devtools	5 Aug 202420:27	–	vulnrichment
Tenable Nessus	Docker Desktop < 4.27.1 Multiple Vulnerabilities	9 Feb 202400:00	–	nessus
Tenable Nessus	Docker Desktop < 4.27.1 Multiple Vulnerabilities	9 Feb 202400:00	–	nessus
Tenable Nessus	Docker Desktop < 4.27.1 Multiple Vulnerabilities	9 Feb 202400:00	–	nessus

Nvd

Node

nuxt nuxtRange<1.3.9

Source	Link
github	www.github.com/nuxt/devtools/blob/c4f2b68281203fc3f61ffc97d9c6623fbfde46bb/packages/devtools/src/dev-auth.ts
portswigger	www.portswigger.net/web-security/websockets/cross-site-websocket-hijacking
github	www.github.com/nuxt/nuxt/security/advisories/GHSA-rcvg-rgf7-pppv
github	www.github.com/nuxt/devtools/blob/c4f2b68281203fc3f61ffc97d9c6623fbfde46bb/packages/devtools/src/server-rpc/assets.ts
github	www.github.com/nuxt/devtools/blob/c4f2b68281203fc3f61ffc97d9c6623fbfde46bb/packages/devtools/src/server-rpc/assets.ts
github	www.github.com/nuxt/devtools/blob/c4f2b68281203fc3f61ffc97d9c6623fbfde46bb/packages/devtools/src/server-rpc/index.ts

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Aug 2024 21:15Current

CVSS38.8

EPSS0.00096