CVE-2024-47515 | pagure Temporary Clone generate_archive symlink

Inserito da Angelo Barbosa | Ott 1, 2024 | CVE

A vulnerability was found in pagure. It has been declared as problematic. Affected by this vulnerability is the function generate_archive of the component Temporary Clone Handler. The manipulation leads to symlink following.

This vulnerability is known as CVE-2024-47515. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-47515 | pagure Temporary Clone generate_archive symlink

Post correlati

CVE-2024-26586 | Linux Kernel up to 4.18/5.10.208/5.15.147/6.6.13/6.7.1 mlxsw spectrum_acl_tcam denial of service

CVE-2024-0496 | Kashipara Billing Software 1.0 HTTP POST Request item_list_edit.php id sql injection

CVE-2024-7808 | code-projects Job Portal 1.0 logindbc.php email sql injection

CVE-2023-4658 | GitLab Enterprise Edition prior 16.4.3/16.5.3/16.6.1 Allowed to Merge access control