CVE-2021-26504

CVSS V2 None CVSS V3 None
Description
Directory Traversal vulnerability in Foddy node-red-contrib-huemagic version 3.0.0, allows remote attackers to gain sensitive information via crafted request in res.sendFile API in hue-magic.js.
Overview
  • CVE ID
  • CVE-2021-26504
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-08-11T14:15:12
  • Last Modified Date
  • 2023-08-16T20:22:24
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:dgtl:huemagic:3.0.0:*:*:*:*:node.js:*:* 1 OR
References
Reference URL Reference Tags
https://github.com/Foddy/node-red-contrib-huemagic/issues/217 Exploit Issue Tracking Patch
History
Created Old Value New Value Data Type Notes
2023-09-06 03:38:38 Added to TrackCVE
2023-09-06 03:38:40 Weakness Enumeration new