Lucene search
MitreVULNRICHMENT:CVE-2024-46938HistorySep 15, 2024 - 12:00 a.m.
CVE-2024-46938
2024-09-1500:00:00
mitre
github.com
sitecore
experience platform
experience manager
experience commerce
unauthenticated
file read
security issue
arbitrary files
An issue was discovered in Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) 8.0 Initial Release through 10.4 Initial Release. An unauthenticated attacker can read arbitrary files.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:sitecore:experience_platform:*:*:*:*:*:*:*:*"
],
"vendor": "sitecore",
"product": "experience_platform",
"versions": [
{
"status": "affected",
"version": "8.0",
"lessThan": "10.4",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:sitecore:experience_manager:*:*:*:*:*:*:*:*"
],
"vendor": "sitecore",
"product": "experience_manager",
"versions": [
{
"status": "affected",
"version": "8.0",
"lessThan": "10.4",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:sitecore:experience_commerce:*:*:*:*:*:*:*:*"
],
"vendor": "sitecore",
"product": "experience_commerce",
"versions": [
{
"status": "affected",
"version": "8.0",
"lessThan": "10.4",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]Related
nvd
nvd
CVE-2024-46938
2024-09-15 22:15:09
cvelist
cvelist
CVE-2024-46938
2024-09-15 00:00:00
cve
cve
CVE-2024-46938
2024-09-15 22:15:09
AI Score
7.1
Confidence
Low
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-46938