​
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-43799

Published

Last updated

https://nvd.nist.gov/vuln/detail/CVE-2024-43799

Severity

4.7

Medium

CVSS V3

Description

Send is a library for streaming files from the file system as a http response. Send passes untrusted user input to SendStream.redirect() which executes untrusted code. This issue is patched in send 0.19.0.

References

  • https://github.com/advisories/GHSA-m6fv-jmcg-4jfg

Affected packages


Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images