CVE-2024-9924 9.8 CRITICAL CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH updated 1 year ago by @fricklerhandwerk Activity log Created automatic suggestion 1 year ago @fricklerhandwerk dismissed 1 year ago Hgiga OAKlouds - Arbitrary File Read And Delete The fix for CVE-2024-26261 was incomplete, and and the specific package for OAKlouds from Hgiga remains at risk. Unauthenticated remote attackers still can download arbitrary system files, which may be deleted subsequently . Affected products OAKlouds-webbase-2.0 <1162 Matching in nixpkgs
CVE-2024-9924 9.8 CRITICAL CVSS version: 3.1 Attack vector (AV): NETWORK Attack complexity (AC): LOW Privileges required (PR): NONE User interaction (UI): NONE Scope (S): UNCHANGED Confidentiality impact (C): HIGH Integrity impact (I): HIGH Availability impact (A): HIGH updated 1 year ago by @fricklerhandwerk Activity log Created automatic suggestion 1 year ago @fricklerhandwerk dismissed 1 year ago Hgiga OAKlouds - Arbitrary File Read And Delete The fix for CVE-2024-26261 was incomplete, and and the specific package for OAKlouds from Hgiga remains at risk. Unauthenticated remote attackers still can download arbitrary system files, which may be deleted subsequently . Affected products OAKlouds-webbase-2.0 <1162 Matching in nixpkgs