CVE-2024-37164 | cvat-ai cvat up to 2.14.2 server-side request forgery

Inserito da Angelo Barbosa | Giu 13, 2024 | CVE

A vulnerability classified as critical was found in cvat-ai cvat up to 2.14.2. Affected by this vulnerability is an unknown functionality. The manipulation leads to server-side request forgery.

This vulnerability is known as CVE-2024-37164. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37164 | cvat-ai cvat up to 2.14.2 server-side request forgery

Post correlati

CVE-2024-23339 | elijahharry hoolock 2.0.0/2.1.0/2.2.0 prototype pollution (GHSA-4c2g-hx49-7h25)

CVE-2024-4490 | Elegant Themes Divi Theme, Extra Theme, Divi Page Builder Plugin cross site scripting

CVE-2024-37476 | Automattic Newspack Campaigns Plugin up to 2.31.1 on WordPress cross site scripting

CVE-2024-22717 | Form Tools 3.1.1 First Name cross site scripting