CVE-2024-41628

Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0 before 2.0.0-9779, and 2.1.0 before 2.1.0-9780 allows a remote attacker to include and display file content in an HTTP request via the CMON API.

CVSS

No CVSS.

References

Link	Resource
http://clustercontrol.com
http://severalnines.com
https://docs.severalnines.com/docs/clustercontrol/changelogs/changes-in-v1-9-8/#maintenance-release-july-24th-2024
https://docs.severalnines.com/docs/clustercontrol/changelogs/changes-in-v2-1-0/

Configurations

No configuration.

History

29 Jul 2024, 14:12

Type	Values Removed	Values Added
Summary		(es) Vulnerabilidad de Directory Traversal en Manynines Cluster Control 1.9.8 anterior a 1.9.8-9778, 2.0.0 anterior a 2.0.0-9779 y 2.1.0 anterior a 2.1.0-9780 permite a un atacante remoto incluir y mostrar contenido de archivo en una solicitud HTTP a través de la API CMON.

Information

Published : 2024-07-26 21:15

Updated : 2024-07-29 14:12

NVD link : CVE-2024-41628

Mitre link : CVE-2024-41628

CVE.ORG link : CVE-2024-41628

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2024-41628

Attach tags to `CVE-2024-41628`