admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-517xx/CVE-2024-51749.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

64 lines
2.3 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-51749",
"sourceIdentifier": "security-advisories@github.com",
"published": "2024-11-12T17:15:09.910",
"lastModified": "2024-11-13T17:01:58.603",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Element is a Matrix web client built using the Matrix React SDK. Versions of Element Web and Desktop earlier than 1.11.85 do not check if thumbnails for attachments, stickers and images are coherent. It is possible to add thumbnails to events trigger a file download once clicked. Fixed in element-web 1.11.85."
},
{
"lang": "es",
"value": "Element es un cliente web de Matrix creado con el SDK de Matrix React. Las versiones de Element Web y Desktop anteriores a la 1.11.85 no comprueban si las miniaturas de los archivos adjuntos, las pegatinas y las im\u00e1genes son coherentes. Es posible a\u00f1adir miniaturas a eventos que activen la descarga de un archivo al hacer clic en ellos. Se ha corregido en element-web 1.11.85."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"baseScore": 3.5,
"baseSeverity": "LOW",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.1,
"impactScore": 1.4
}
]
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-451"
}
]
}
],
"references": [
{
"url": "https://github.com/element-hq/element-web/commit/a00c343435d633e64de2c0548217aa611c7bbef5",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/element-hq/element-web/security/advisories/GHSA-5486-384g-mcx2",
"source": "security-advisories@github.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink