CVE-2015-10024
CVSS V2 None
CVSS V3 None
Description
A vulnerability classified as critical was found in hoffie larasync. This vulnerability affects unknown code of the file repository/content/file_storage.go. The manipulation leads to path traversal. The name of the patch is 776bad422f4bd4930d09491711246bbeb1be9ba5. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-217612.
Overview
- CVE ID
- CVE-2015-10024
- Assigner
- cna@vuldb.com
- Vulnerability Status
- Analyzed
- Published Version
- 2023-01-07T13:15:09
- Last Modified Date
- 2023-01-12T18:01:22
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:a:larasync_project:larasync:*:*:*:*:*:*:*:* | 1 | OR | 2015-01-20 |
References
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2015-10024 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-10024 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-01-07 13:18:06 | Added to TrackCVE | |||
| 2023-01-07 13:18:06 | Weakness Enumeration | new | ||
| 2023-01-08 05:21:11 | 2023-01-08T05:11:13 | CVE Modified Date | updated | |
| 2023-01-08 05:21:11 | Received | Awaiting Analysis | Vulnerability Status | updated |
| 2023-01-08 05:21:14 | CVSS V3 information | new | ||
| 2023-01-08 05:21:14 | CVSS V2 information | new | ||
| 2023-01-12 05:16:17 | Awaiting Analysis | Undergoing Analysis | Vulnerability Status | updated |
| 2023-01-12 05:16:21 | CVSS V3 information | new | ||
| 2023-01-12 05:16:21 | CVSS V2 information | new | ||
| 2023-01-12 18:17:14 | 2023-01-12T18:01:22 | CVE Modified Date | updated | |
| 2023-01-12 18:17:14 | Undergoing Analysis | Analyzed | Vulnerability Status | updated |
| 2023-01-12 18:17:17 | CPE Information | updated | ||
| 2023-01-12 18:17:17 | CVSS V3 information | new | ||
| 2023-01-12 18:17:17 | CVSS V2 information | new |