CVE-2024-8571 MEDIUM

CVE-2024-8571: erjemin roll_cms views.py information exposure

Vendor Erjemin
Product roll_cms
Weakness CWE-209 · Error message info leak
Published September 8, 2024
Last update September 9, 2024

CVSS base score

5.1/10
Attack vector Adjacent
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

A vulnerability was found in erjemin roll_cms up to 1484fe2c4e0805946a7bcf46218509fcb34883a9. It has been classified as problematic. This affects an unknown part of the file roll_cms/roll_cms/views.py. The manipulation leads to information exposure through error message. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.

Key dates

02Disclosure timeline

September 8, 2024 CVE published
September 9, 2024 Record updated