PT-2024-36252 · Unknown · Vimeography
Fariq Fadillah Gusti Insani
·
Published
2024-12-16
·
Updated
2024-12-16
·
CVE-2024-54366
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Vimeography versions prior to 2.4.4
Vimeography version 2.4.4
Description:
The issue is related to the generation of error messages that contain sensitive information, allowing the retrieval of embedded sensitive data.
Recommendations:
For versions prior to 2.4.4, update to version 2.4.5 or later.
For version 2.4.4, update to version 2.4.5 or later.
Fix
Generation of Error Message Containing Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Vimeography