ГлавнаяУязвимости → CVE-2024-30170
9.1критическая

CVE-2024-30170

Описание

PrivX before 34.0 allows data exfiltration and denial of service via the REST API. This is fixed in minor versions 33.1, 32.3, 31.3, and later, and in major version 34.0 and later,

Затрагиваемое ПО
Ssh Privx
CVSS
Балл9.1 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Источники
https://info.ssh.com/improper-input-validation-faqhttps://privx.docs.ssh.com/docs/security