GHSA-m439-5w5w-f32v

Опубликовано: 17 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

N-central is vulnerable to a path traversal that allows unintended access to the Apache Tomcat WEB-INF directory. Customer data is not exposed.

This vulnerability is present in all deployments of N-central prior to N-central 2024.6.

N-central is vulnerable to a path traversal that allows unintended access to the Apache Tomcat WEB-INF directory. Customer data is not exposed.

This vulnerability is present in all deployments of N-central prior to N-central 2024.6.

Ссылки

EPSS

Процентиль: 42%

0.00197

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2024-8510

Дефекты

CWE-22

Связанные уязвимости

CVE-2024-8510

CVSS3: 5.3

nvd

11 месяцев назад

N-central is vulnerable to a path traversal that allows unintended access to the Apache Tomcat WEB-INF directory. Customer data is not exposed. This vulnerability is present in all deployments of N-central prior to N-central 2024.6.

BDU:2025-03463

CVSS3: 5.3

fstec

11 месяцев назад

Уязвимость платформы мониторинга и управления ИТ-инфраструктурой N-able N-central, связанная с неверным ограничением имени пути к каталогу, позволяющая нарушителю читать произвольные файлы

EPSS

Процентиль: 42%

0.00197

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2024-8510

Дефекты

CWE-22