CVE-2024-21876 | Enphase IQ Gateway prior 8.2.4225 URL Parameter path traversal

Inserito da Angelo Barbosa | Ago 10, 2024 | CVE

A vulnerability classified as very critical has been found in Enphase IQ Gateway. This affects an unknown part of the component URL Parameter Handler. The manipulation leads to path traversal.

This vulnerability is uniquely identified as CVE-2024-21876. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21876 | Enphase IQ Gateway prior 8.2.4225 URL Parameter path traversal

Post correlati

CVE-2023-50268 | jq = 1.7 decNumber buffer overflow (GHSA-7hmr-442f-qc8j)

CVE-2024-45852 | MindsDB up to 23.3.2.0 deserialization

CVE-2024-32051 | RoamWiFi R10 prior 4.8.45 log file

CVE-2024-43883 | Linux Kernel up to 6.10.4 vhci-hcd resource consumption (ZDI-CAN-22273)