CVE-2024-41674 | ckan up to 2.10.4 package_search information exposure (GHSA-2rqw-cfhc-35fh)

Posted by Angelo Barbosa | Aug 21, 2024 | CVE

A vulnerability has been found in ckan up to 2.10.4 and classified as problematic. Affected by this vulnerability is the function package_search. The manipulation leads to information exposure through error message.

This vulnerability is known as CVE-2024-41674. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41674 | ckan up to 2.10.4 package_search information exposure (GHSA-2rqw-cfhc-35fh)

Related Posts

CVE-2023-52542 | Huawei HarmonyOS/EMUI System Module permission

CVE-2024-39409 | Adobe Commerce/Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1 cross-site request forgery (apsb24-61)

CVE-2024-2835 | OpenText ArcSight Enterprise Security Manager cross site scripting

CVE-2024-38223 | Microsoft Windows up to Server 2022 23H2 Initial Machine Configuration access control