Executive Summary

Informations
Name CVE-2024-45601 First vendor Publication 2024-09-18
Vendor Cve Last vendor Modification 2024-09-20

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores

Detail

Mesop is a Python-based UI framework designed for rapid web apps development. A vulnerability has been discovered and fixed in Mesop that could potentially allow unauthorized access to files on the server hosting the Mesop application. The vulnerability was related to insufficient input validation in a specific endpoint. This could have allowed an attacker to access files not intended to be served. Users are strongly advised to update to the latest version of Mesop immediately. The latest version includes a fix for this vulnerability. At time of publication 0.12.4 is the most recently available version of Mesop.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45601

Sources (Detail)

https://github.com/google/mesop/commit/17fb769d6a91f0a8cbccfab18f64977b158a6a31
https://github.com/google/mesop/security/advisories/GHSA-pmv9-3xqp-8w42
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
Date Informations
2024-09-20 17:27:27
  • Multiple Updates
2024-09-19 00:27:28
  • First insertion