CVE-2024-6301
5.3MEDIUMLack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most EDUs
게시됨: 6/25/2024업데이트됨: 11/21/2024
설명
Lack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most EDUs
AI 분석AI 기반
영향받는 제품
conduitconduit
참조
- https://conduit.rs/changelog/#v0-8-0-2024-06-12Release Notes
- https://gitlab.com/famedly/conduit/-/releases/v0.8.0Release Notes
- https://conduit.rs/changelog/#v0-8-0-2024-06-12Release Notes
- https://gitlab.com/famedly/conduit/-/releases/v0.8.0Release Notes