CVE-2024-41674
CVE-2024-41674
Título es
CVE-2024-41674
Mié, 21/08/2024 – 15:15
Tipo
CWE-209
Gravedad 2.0 Txt
Pendiente de análisis
Título en
CVE-2024-41674
Descripción en
CKAN is an open-source data management system for powering data hubs and data portals. If there were connection issues with the Solr server, the internal Solr URL (potentially including credentials) could be leaked to package_search calls as part of the returned error message. This has been patched in CKAN 2.10.5 and 2.11.0.
21/08/2024
21/08/2024
Vector CVSS:3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Gravedad 3.1 (CVSS 3.1 Base Score)
5.30
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
MEDIUM
Referencias
Enviar en el boletín
Off
