CVE-2024-29028 in memosinfo

Zusammenfassung

von MITRE • 19.04.2024

memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the /o/get/httpmeta that allows unauthenticated users to enumerate the internal network and receive limited html values in json form. This vulnerability is fixed in 0.16.1.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Zuständig

GitHub, Inc.

Reservieren

14.03.2024

Veröffentlichung

19.04.2024

Moderieren

akzeptiert

Eintrag

VDB-261618

CPE

bereit

EPSS

0.01049

KEV

nein

Aktivitäten

very low

Quellen

Do you need the next level of professionalism?

Upgrade your account now!