Lucene search
K

4 matches found

NVD
NVD
added 2024/12/23 6:15 p.m.10 views

CVE-2024-53275

Home-Gallery.org is a self-hosted open-source web gallery to browse personal photos and videos. In 1.15.0 and earlier, the default setup of home-gallery is vulnerable to DNS rebinding. Home-gallery is set up without TLS and user authentication by default, leaving it vulnerable to DNS rebinding. I...

5.3CVSS0.00262EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/23 5:13 p.m.8 views

CVE-2024-53275 GHSL-2024-091: DNS rebinding attack in home-gallery

Home-Gallery.org is a self-hosted open-source web gallery to browse personal photos and videos. In 1.15.0 and earlier, the default setup of home-gallery is vulnerable to DNS rebinding. Home-gallery is set up without TLS and user authentication by default, leaving it vulnerable to DNS rebinding. I...

5.3CVSS7.3AI score0.00262EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/23 5:13 p.m.17 views

CVE-2024-53275 GHSL-2024-091: DNS rebinding attack in home-gallery

Home-Gallery.org is a self-hosted open-source web gallery to browse personal photos and videos. In 1.15.0 and earlier, the default setup of home-gallery is vulnerable to DNS rebinding. Home-gallery is set up without TLS and user authentication by default, leaving it vulnerable to DNS rebinding. I...

5.3CVSS0.00262EPSS
Exploits0References1
CVE
CVE
added 2024/12/23 5:13 p.m.52 views

CVE-2024-53275

Home-Gallery.org (versions 1.15.0 and earlier) is vulnerable to DNS rebinding due to default exposure without TLS or authentication. An attacker can lure a user to a malicious site, then switch DNS to point to the internal Home-Gallery host and read the web server’s responses, potentially exfiltr...

5.3CVSS6.7AI score0.00262EPSS
Exploits0References1
Rows per page
Query Builder