NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-42499

Summary	Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in FitNesse releases prior to 20241026. If this vulnerability is exploited, an attacker may be able to know whether a file exists at a specific path, and/or obtain some part of the file contents under specific conditions.
Publication Date	Nov. 15, 2024, 3:15 p.m.
Registration Date	Nov. 16, 2024, 5:01 a.m.
Last Update	Nov. 19, 2024, 1:35 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/unclebob/fitnesse/releases/tag/20241026
2	https://fitnesse.org/FitNesseDownload
3	https://jvn.jp/en/jp/JVN36791327/

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-22	パス・トラバーサル	https://cwe.mitre.org/data/definitions/22.html