Insecure Direct Object Reference (IDOR) in GNU Savane v.3.12 and before allows a remote attacker to delete arbitrary files via crafted input to the trackers_data_delete_file function.
Metrics
Affected Vendors & Products
References
History
Fri, 16 Aug 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-639 |
Fri, 16 Aug 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | ||
Vendors & Products |
Savannah
Savannah savane |
|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-04-08T00:00:00
Updated: 2024-08-16T18:13:30.451Z
Reserved: 2024-02-26T00:00:00
Link: CVE-2024-27630
Vulnrichment
Updated: 2024-08-02T00:34:52.476Z
NVD
Status : Awaiting Analysis
Published: 2024-04-08T21:15:09.983
Modified: 2024-11-21T09:04:50.337
Link: CVE-2024-27630
Redhat
No data.