Sending specially crafted HTTP requests and inspector messages to Wrangler's dev server could result in any file on the user's computer being accessible over the local network. An attacker that could trick any user on the local network into opening a malicious website could also read any file.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: cloudflare

Published: 2023-12-29T11:54:08.925Z

Updated: 2024-08-02T08:50:07.936Z

Reserved: 2023-12-22T09:59:49.428Z

Link: CVE-2023-7079

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-12-29T12:15:47.763

Modified: 2024-11-21T08:45:12.460

Link: CVE-2023-7079

cve-icon Redhat

No data.