### [CVE-2024-37372](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37372)
![](https://img.shields.io/static/v1?label=Product&message=Node&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=10.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=11.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=12.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=13.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=14.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=15.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=16.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=17.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=19.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=20.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=21.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=22.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=4.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=5.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=7.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=8.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=9.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=blue)

### Description

The Permission Model assumes that any path starting with two backslashes \ has a four-character prefix that can be ignored, which is not always true. This subtle bug leads to vulnerable edge cases.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/sharmapintu987654321-boop/Nessus-Scan-Reports