Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/02/05 6:24 a.m.9 views

CVE-2024-5926

A path traversal vulnerability in the get-project-files functionality of stitionai/devika allows attackers to read arbitrary files from the filesystem and cause a Denial of Service DoS. This issue is present in all versions of the application. The vulnerability arises due to insufficient path...

9.1CVSS8.9AI score0.00864EPSS
Exploits1References1
cvelist
cvelist
added 2024/06/30 12:0 a.m.33 views

CVE-2024-5926 Path Traversal in stitionai/devika

A path traversal vulnerability in the get-project-files functionality of stitionai/devika allows attackers to read arbitrary files from the filesystem and cause a Denial of Service DoS. This issue is present in all versions of the application. The vulnerability arises due to insufficient path...

9.1CVSS0.00864EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2024/06/30 12:0 a.m.23 views

CVE-2024-5926 Path Traversal in stitionai/devika

A path traversal vulnerability in the get-project-files functionality of stitionai/devika allows attackers to read arbitrary files from the filesystem and cause a Denial of Service DoS. This issue is present in all versions of the application. The vulnerability arises due to insufficient path...

9.1CVSS9.1AI score0.00864EPSS
Exploits1References1
cve
cve
added 2024/06/30 12:0 a.m.71 views

CVE-2024-5926

CVE-2024-5926 involves a path traversal in stitionai/devika’s get-project-files function. The root cause is insufficient path sanitization for the project-name parameter, enabling an attacker to traverse the filesystem and read arbitrary files, potentially causing a Denial of Service across all v...

9.1CVSS9.1AI score0.00864EPSS
Exploits1References1Affected Software1
openvas
openvas
added 2017/09/26 12:0 a.m.2657 views

Generic HTTP Directory Traversal / File Inclusion (Web Application URL Parameter) - Active Check

Generic check for HTTP directory traversal / file inclusion vulnerabilities within URL parameters of the remote web application. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

10CVSS6.7AI score0.82036EPSS
Exploits108References4
Rows per page
Query Builder