CVE-2024-2052

CWE-552: Files or Directories Accessible to External Parties vulnerability exists that could allow unauthenticated files and logs exfiltration and download of files when an attacker modifies the URL to download to a different location.
Configurations

No configuration.

History

21 Nov 2024, 09:08

Type Values Removed Values Added
References () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-072-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-072-01.pdf - () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-072-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-072-01.pdf -
Summary
  • (es) CWE-552: Existe una vulnerabilidad de archivos o directorios accesibles a terceros que podría permitir la filtración y descarga de archivos y registros no autenticados cuando un atacante modifica la URL para descargarlos en una ubicación diferente.

18 Mar 2024, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-03-18 16:15

Updated : 2024-11-21 09:08


NVD link : CVE-2024-2052

Mitre link : CVE-2024-2052

CVE.ORG link : CVE-2024-2052


JSON object : View

Products Affected

No product.

CWE
CWE-552

Files or Directories Accessible to External Parties