CVE-2024-6301
5.3MEDIUMLack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most EDUs
Veröffentlicht: 6/25/2024Aktualisiert: 11/21/2024
Beschreibung
Lack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most EDUs
KI-AnalyseKI-gestützt
Betroffene Produkte
conduitconduit
Referenzen
- https://conduit.rs/changelog/#v0-8-0-2024-06-12Release Notes
- https://gitlab.com/famedly/conduit/-/releases/v0.8.0Release Notes
- https://conduit.rs/changelog/#v0-8-0-2024-06-12Release Notes
- https://gitlab.com/famedly/conduit/-/releases/v0.8.0Release Notes