CVE-2024-41254 | litestream 0.3.13 Host Key Verification ssh.InsecureIgnoreHostKey channel accessible

Posted by Angelo Barbosa | Aug 1, 2024 | CVE

A vulnerability was found in litestream 0.3.13 and classified as problematic. Affected by this issue is the function ssh.InsecureIgnoreHostKey of the component Host Key Verification Handler. The manipulation leads to channel accessible by non-endpoint.

This vulnerability is handled as CVE-2024-41254. The attack may be launched remotely. There is no exploit available.

CVE-2024-41254 | litestream 0.3.13 Host Key Verification ssh.InsecureIgnoreHostKey channel accessible

Related Posts

CVE-2024-3355 | SourceCodester Aplaya Beach Resort Online Reservation System 1.0 controller.php name sql injection

CVE-2024-3101 | mintplex-labs anything-llm up to 0.x Multi-User Mode multi_user_mode input validation

CVE-2024-41370 | Organizr 1.90 chat/setlike.php sql injection

CVE-2024-7080 | SourceCodester Insurance Management System 1.0 /E-Insurance/ direct request