CVE-2024-42367 | aio-libs aiohttp up to 3.10.1 symlink (GHSA-jwhx-xcg6-8xhj)

Posted by Angelo Barbosa | Aug 9, 2024 | CVE

A vulnerability has been found in aio-libs aiohttp up to 3.10.1 and classified as critical. This vulnerability affects unknown code. The manipulation leads to symlink following.

This vulnerability was named CVE-2024-42367. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-42367 | aio-libs aiohttp up to 3.10.1 symlink (GHSA-jwhx-xcg6-8xhj)

Related Posts

CVE-2023-7169 | Snow Inventory Agent up to 6.14.5 on Windows authentication spoofing

CVE-2024-39173 | calculator-boilerplate 1.0 /routes/calculator.js eval input injection

CVE-2024-30804 | Asus Fan_Xpert prior 10013 DeviceIoControl Privilege Escalation

CVE-2024-1540 | gradio-app gradio CI command injection