DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-43799

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-43799

CGA ID

CGA-fg3r-rpq5-c4xr

Severity

4.7

Medium

CVSS V3

Description

Send is a library for streaming files from the file system as a http response. Send passes untrusted user input to SendStream.redirect() which executes untrusted code. This issue is patched in send 0.19.0.

References

  • https://images.chainguard.dev/security/CGA-fg3r-rpq5-c4xr

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images