CVE-2024-28185 | Judge0 up to 1.13.0 run_script symlink

Posted by Angelo Barbosa | Apr 18, 2024 | CVE

A vulnerability was found in Judge0 up to 1.13.0. It has been declared as very critical. Affected by this vulnerability is the function run_script. The manipulation leads to symlink following.

This vulnerability is known as CVE-2024-28185. The attack can be launched remotely. There is no exploit available.

CVE-2024-28185 | Judge0 up to 1.13.0 run_script symlink

Related Posts

CVE-2023-42740 | Unisoc S8000 Telecom Service permission

CVE-2023-6660 | FreeBSD 13.2/14.0 NFS Client memory corruption

CVE-2024-29049 | Microsoft Edge prior 122.0.2365.120/123.0.2420.81 Webview2 unknown vulnerability

CVE-2023-6738 | PageLayer Plugin up to 1.7.8 on WordPress Meta Field cross site scripting