Lucene search

GoogleOSV:GO-2024-2886

HistoryJun 05, 2024 - 3:10 p.m.

MinIO information disclosure vulnerability in github.com/minio/minio

2024-06-0515:10:42

Google

osv.dev

minio

information disclosure

vulnerability

github

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.6%

JSON

MinIO information disclosure vulnerability in github.com/minio/minio

CPENameOperatorVersion
github.com/minio/miniolt0.0.0-20240527191746-e0fe7cc39172

CPE	Name	Operator	Version
	github.com/minio/minio	lt	0.0.0-20240527191746-e0fe7cc39172

References

developer.mozilla.org/en-US/docs/Web/HTTP/Headers/If-Modified-Since

developer.mozilla.org/en-US/docs/Web/HTTP/Headers/If-Unmodified-Since

github.com/minio/minio/commit/e0fe7cc391724fc5baa85b45508f425020fe4272

github.com/minio/minio/pull/19810

github.com/minio/minio/security/advisories/GHSA-95fr-cm4m-q5p9

nvd.nist.gov/vuln/detail/CVE-2024-36107

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.6%

JSON

Related for OSV:GO-2024-2886