CVE-2024-6301
5.3MEDIUMLack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most EDUs
Опубликовано: 6/25/2024Обновлено: 11/21/2024
Описание
Lack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most EDUs
ИИ-АнализНа базе ИИ
Затронутые продукты
conduitconduit
Ссылки
- https://conduit.rs/changelog/#v0-8-0-2024-06-12Release Notes
- https://gitlab.com/famedly/conduit/-/releases/v0.8.0Release Notes
- https://conduit.rs/changelog/#v0-8-0-2024-06-12Release Notes
- https://gitlab.com/famedly/conduit/-/releases/v0.8.0Release Notes