CVE-2024-3584 | qdrant parameter up to 1.8.x upload name input validation

Posted by Angelo Barbosa | May 30, 2024 | CVE

A vulnerability was found in qdrant parameter up to 1.8.x. It has been classified as very critical. This affects an unknown part of the file /collections/{name}/snapshots/upload. The manipulation of the argument name leads to improper input validation.

This vulnerability is uniquely identified as CVE-2024-3584. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-3584 | qdrant parameter up to 1.8.x upload name input validation

Related Posts

CVE-2024-32759 | Johnson Controls Software House CCURE 9000 Installer weak credentials (icsa-24-191-04)

CVE-2022-30268 | Emerson PACSystem RX3i/PACSystem RSTi-EP/Fanuc VersaMax data authenticity (icsa-24-158-01)

CVE-2024-21667 | Pimcore Customer Data Framework prior 4.0.6 GDPR Extract access control

VDB-259699 | Trojan.Win32.Razy.abc SmartData memory corruption