Lucene search
Redhat.comRH:CVE-2018-11798HistoryJan 17, 2019 - 5:19 p.m.
CVE-2018-11798
2019-01-1717:19:17
redhat.com
access.redhat.com
5
0.002 Low
EPSS
Percentile
52.8%
A flaw was found in the Node.js static web server in Apache Thrift, where it allowed a remote user to access files outside of the set web servers’ docroot path. An attacker could use this flaw to possibly access unauthorized files and sensitive information.
Related
cve
cve
CVE-2018-11798
2019-01-07 18:00:00
veracode
veracode
Directory Traversal
2019-01-08 05:57:20
osv
osv
CVE-2018-11798
2019-01-07 17:29:00
Apache Thrift Node.js static web server sandbox escape
2019-01-17 13:56:33
debiancve
debiancve
CVE-2018-11798
2019-01-07 18:00:00
cvelist
cvelist
CVE-2018-11798
2019-01-07 18:00:00
prion
prion
Path traversal
2019-01-07 17:29:00
github
github
Apache Thrift Node.js static web server sandbox escape
2019-01-17 13:56:33
wolfi
wolfi
CVE-2018-11798 vulnerabilities
2024-07-03 16:16:08
nvd
nvd
CVE-2018-11798
2019-01-07 17:29:00
cgr
cgr
CVE-2018-11798 vulnerabilities
2024-05-19 03:07:16
ubuntucve
ubuntucve
CVE-2018-11798
2019-01-07 00:00:00
nessus
nessus
EulerOS Virtualization 3.0.1.0 : thrift (EulerOS-SA-2019-1458)
2019-05-14 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for thrift (EulerOS-SA-2019-1458)
2020-01-23 00:00:00
redhat
redhat
(RHSA-2019:1545) Important: Red Hat Fuse 7.3.1 security update
2019-06-18 19:49:16
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - October 2019
2020-01-22 00:00:00