Files or Directories Accessible to External Parties
CVE-2024-5262
Summary
Files or Directories Accessible to External Parties vulnerability in the smb server in ProjectDiscovery Interactsh allows remote attackers to read/write any files in the directory and subdirectories where the victim runs interactsh-server via anonymous login. This issue affects github.com/projectdiscovery/interactsh versions 0.0.5 through 1.2.0.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- NONE
- NONE
- HIGH
- HIGH
CWE-552 - Files or Directories Accessible to External Parties
The product makes files or directories accessible to unauthorized actors, even though they should not be.
References
Advisory Timeline
- Published
