CVE Catalog

CVE-2024-40646

HighCVSS 8.6
Published: Updated: Translated: NVD NIST

Summary

Vertex is a management tool for PT users that is vulnerable to path traversal in versions prior to commit fbde301b97986d5913fc4bc95f5445750d282e11. Users should upgrade to a version containing this commit to receive a patch.

Risk Assessment

An attacker could exploit the vulnerability to gain access to unauthorized files on the system, potentially leading to the exposure of sensitive data.

Recommendation

It is recommended to immediately upgrade Vertex to the version containing commit fbde301b97986d5913fc4bc95f5445750d282e11 to mitigate this vulnerability.

Original NVD description (English source)

Vertex is a management tool for PT (Private Tracker) users to manage streaming and watching videos. Versions prior to commit fbde301b97986d5913fc4bc95f5445750d282e11 are vulnerable to path traversal. Users should upgrade to a version containing commit fbde301b97986d5913fc4bc95f5445750d282e11 to receive a patch.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS