A vulnerability classified as critical has been found in cym1102 nginxWebUI up to 3.9.9. This affects the function handlePath of the file /adminPage/conf/saveCmd. The manipulation of the argument nginxPath leads to improper certificate validation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-260577 was assigned to this vulnerability.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2024-04-13T17:31:04.866Z

Updated: 2024-09-03T17:59:26.886Z

Reserved: 2024-04-12T19:33:35.237Z

Link: CVE-2024-3738

cve-icon Vulnrichment

Updated: 2024-08-01T20:20:00.901Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-04-13T18:15:07.390

Modified: 2024-11-21T09:30:16.940

Link: CVE-2024-3738

cve-icon Redhat

No data.