Lucene search
HistoryMay 14, 2024 - 3:16 p.m.
CVE-2024-29800
deserialization vulnerability
timber team
untrusted data
8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
7.9 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Deserialization of Untrusted Data vulnerability in Timber Team & Contributors Timber.This issue affects Timber: from n/a through 1.23.0.
Related
cvelist
cvelist
friendsofphp
friendsofphp
Deserialization of Untrusted Data in timber/timber
2024-04-10 16:24:00
cve
cve
CVE-2024-29800
2024-05-14 15:16:48
veracode
veracode
Deserialization Of Untrusted Data
2024-04-15 12:35:54
vulnrichment
vulnrichment
github
github
timber/timber vulnerable to Deserialization of Untrusted Data
2024-04-12 15:15:46
osv
osv
timber/timber vulnerable to Deserialization of Untrusted Data
2024-04-12 15:15:46
wpvulndb
wpvulndb
Timber < 1.23.1 - Authenticated (Admin+) PHP Object Injection
2024-05-15 00:00:00
wordfence
wordfence
8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
7.9 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for NVD:CVE-2024-29800