CVE-2024-2221 | Qdrant up to 1.7.x upload unrestricted upload

Inserito da Angelo Barbosa | Apr 10, 2024 | CVE

A vulnerability, which was classified as critical, was found in Qdrant up to 1.7.x. This affects an unknown part of the file /collections/{COLLECTION}/snapshots/upload. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2024-2221. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-2221 | Qdrant up to 1.7.x upload unrestricted upload

Post correlati

CVE-2023-5630 | Schneider Electric Trio Q-Series Ethernet Data Radio code download (SEVD-2023-346-01)

CVE-2023-52312 | Paddle up to 2.5.x null pointer dereference (dsa-2023-021)

CVE-2022-47532 | FileRun 20220519 ?module=users&section=cpanel&page=list dir sql injection (usd-2022-0064)

CVE-2023-46231 | Splunk Add-on Builder up to 4.1.3 Session Token log file (SVD-2024-0110)