GHSA-H2RQ-QHR7-53GM Apache Sling Servlets Resolver executes malicious code via path traversal

🗓️ 06 Feb 2024 12:30:30Reported by GoogleType

osv🔗 osv.dev👁 16 Views

Apache Sling Servlets Resolver path traversal vulnerability

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
CVE	CVE-2024-23673	6 Feb 202410:15	–	cve
RedhatCVE	CVE-2024-23673	5 Feb 202507:34	–	redhatcve
NVD	CVE-2024-23673	6 Feb 202410:15	–	nvd
CNVD	Apache Sling Path Traversal Vulnerability	26 Feb 202400:00	–	cnvd
Github Security Blog	Apache Sling Servlets Resolver executes malicious code via path traversal	6 Feb 202412:30	–	github
Veracode	Path Traversal	7 Feb 202405:49	–	veracode
OSV	CVE-2024-23673	6 Feb 202410:15	–	osv
Prion	Path traversal	6 Feb 202410:15	–	prion
Cvelist	CVE-2024-23673 Apache Sling Servlets Resolver: Malicious code execution via path traversal	6 Feb 202410:04	–	cvelist

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-23673
github	www.github.com/apache/sling-org-apache-sling-servlets-resolver/commit/b54d4e6693e0bcd63a97a0328f4f065b8a81b75e
github	www.github.com/apache/sling-org-apache-sling-servlets-resolver
lists	www.lists.apache.org/thread/5zzx8ztwc6tmbwlw80m2pbrp3913l2kl
openwall	www.openwall.com/lists/oss-security/2024/02/06/1

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Feb 2024 12:30Current

8.1High risk

Vulners AI Score8.1

CVSS37.5 - 8.5

EPSS0.00107