CVE-2024-46977 | OpenC3 cosmos up to 5.18.x LocalMode open_local_file path traversal (GHSA-8jxr-mccc-mwg8)

Posted by Angelo Barbosa | Oct 3, 2024 | CVE

A vulnerability has been found in OpenC3 cosmos up to 5.18.x and classified as critical. Affected by this vulnerability is the function open_local_file of the component LocalMode. The manipulation leads to path traversal.

This vulnerability is known as CVE-2024-46977. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-46977 | OpenC3 cosmos up to 5.18.x LocalMode open_local_file path traversal (GHSA-8jxr-mccc-mwg8)

Related Posts

CVE-2024-5758 | wpxpo PostX Plugin up to 4.0.4 on WordPress filterMobileText cross site scripting

CVE-2024-2058 | SourceCodester Petrol Pump Management Software 1.0 /admin/app/product.php photo unrestricted upload

CVE-2024-47378 | WPCOM Member Plugin up to 1.5.4 on WordPress cross site scripting

CVE-2024-8604 | SourceCodester Online Food Ordering System 2.0 Create an Account Page index.php First Name/Last Name cross site scripting