216.73.216.67

CVE-2024-41256

· Published 31/07/2024 21:15 · Modified 31/07/2024 21:15

Labels: CVE-2024-41256 2024-07-31CVE-2024-41256[email protected]

Essential information

Published
31/07/2024 21:15
Modified
31/07/2024 21:15
Author
Creator
CISA KEV
No
CWE

Description

Default configurations in the ShareProofVerifier function of filestash v0.4 causes the application to skip the TLS certificate verification process when sending out email verification codes, possibly allowing attackers to access sensitive data via a man-in-the-middle attack.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References