Sending specially crafted HTTP requests and inspector messages to Wrangler's dev server could result in any file on the user's computer being accessible over the local network. An attacker that could trick any user on the local network into opening a malicious website could also read any file.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cloudflare
Published: 2023-12-29T11:54:08.925Z
Updated: 2024-08-02T08:50:07.936Z
Reserved: 2023-12-22T09:59:49.428Z
Link: CVE-2023-7079
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-12-29T12:15:47.763
Modified: 2024-11-21T08:45:12.460
Link: CVE-2023-7079
Redhat
No data.