CVE-2024-2632
CVSS V2 None
CVSS V3 None
Description
A Information Exposure Vulnerability has been found on Meta4 HR. This vulnerability allows an attacker to obtain a lot of information about the application such as the variables set in the process, the Tomcat versions, library versions and underlying operation system via HTTP GET '/sitetest/english/dumpenv.jsp'.
Overview
- CVE ID
- CVE-2024-2632
- Assigner
- INCIBE
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-03-19T11:58:39.831Z
- Last Modified Date
- 2024-03-19T12:18:29.761Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-meta4-hr-cegid |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-2632 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2632 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-26 00:13:41 | Added to TrackCVE |