CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41163
https://notcve.org/view.php?id=CVE-2024-41163
03 Oct 2024 — A directory traversal vulnerability exists in the archive download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of arbitrary files. An attacker can make an unauthenticated HTTP request to exploit this vulnerability. A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. • https://talosintelligence.com/vulnerability_reports/TALOS-2024-2059 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39755
https://notcve.org/view.php?id=CVE-2024-39755
03 Oct 2024 — A privilege escalation vulnerability exists in the Veertu Anka Build 1.42.0. The vulnerability occurs during Anka node agent update. A low privilege user can trigger the update action which can result in unexpected elevation of privilege. A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG file can lead to execute priviledged operation. • https://talosintelligence.com/vulnerability_reports/TALOS-2024-2060 • CWE-282: Improper Ownership Management •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41922
https://notcve.org/view.php?id=CVE-2024-41922
03 Oct 2024 — A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can result in a disclosure of arbitrary files. An attacker can make an unauthenticated HTTP request to trigger this vulnerability. A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. • https://talosintelligence.com/vulnerability_reports/TALOS-2024-2061 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •