CVE Catalog

CVE-2024-55401

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.47%

37th percentile - higher than 37% of all known CVEs

Summary

An issue in 4C Strategies Exonaut before version 22.4 allows attackers to perform a directory traversal attack. This vulnerability enables reading files outside the intended directory.

Risk Assessment

An attacker could access sensitive configuration files or data stored on the server, potentially leading to information disclosure and compromising organizational security.

Recommendation

Immediately update 4C Strategies Exonaut to version 22.4 or later, which includes a fix for this vulnerability.

Original NVD description (English source)

An issue in 4C Strategies Exonaut before v22.4 allows attackers to execute a directory traversal.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS