CVE-2024-6781
CVSS V2 None
CVSS V3 None
Description
Path traversal in Calibre <= 7.14.0 allow unauthenticated attackers to achieve arbitrary file read.
Overview
- CVE ID
- CVE-2024-6781
- Assigner
- STAR_Labs
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-08-06T03:38:45.309Z
- Last Modified Date
- 2024-08-06T03:38:45.309Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://starlabs.sg/advisories/24/24-6781/ | third-party-advisory |
| https://github.com/kovidgoyal/calibre/commit/bcd0ab12c41a887f8290a9b56e46c3a29038d9c4 | patch |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-6781 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6781 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-08-06 13:09:03 | Added to TrackCVE |