Lucene search
IvanwallarmWALLARMLAB:C4CA34E009E244BBB00A12C40F64D9B0HistoryOct 08, 2020 - 8:36 p.m.
CVE-2020-24807: Preventing critical Socket.IO vulnerability
2020-10-0820:36:02
Ivanwallarm
lab.wallarm.com
112
cve-2020-24807
socket.io
vulnerability
websocket
restriction bypass
EPSS
0.009
Percentile
82.5%
This year is full of extraordinary events and cybersecurity domains are not an exception. Massive WebSocket vulnerabilities are not so often discovered, we can say they are piece. But here is a new one, named CVE-2020-24807 was mentioned in a Socket.io advisory 6 days ago: https://github.com/advisories/GHSA-6495-8jvh-f28x This file type restriction bypass vulnerability is technically an […]
The post CVE-2020-24807: Preventing critical Socket.IO vulnerability appeared first on Wallarm Blog.
Related
osv
osv
"Arbitrary code execution in socket.io-file"
2021-05-10 18:38:11
File restriction bypass in socket.io-file
2020-10-02 15:39:54
cve
cve
CVE-2020-24807
2020-10-06 18:15:17
github
github
"Arbitrary code execution in socket.io-file"
2021-05-10 18:38:11
nvd
nvd
CVE-2020-24807
2020-10-06 18:15:17
cvelist
cvelist
CVE-2020-24807
2020-10-06 17:10:17
prion
prion
Input validation
2020-10-06 18:15:00
veracode
veracode
Authorization Bypass
2020-10-05 03:55:32