Jan v0.4.12 was discovered to contain an arbitrary file read vulnerability via the /v1/app/readFileSync interface.
History

Wed, 14 Aug 2024 21:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-31

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-06-04T18:26:04.843Z

Updated: 2025-02-13T15:59:45.280Z

Reserved: 2024-05-30T00:00:00.000Z

Link: CVE-2024-36857

cve-icon Vulnrichment

Updated: 2024-08-02T03:43:49.202Z

cve-icon NVD

Status : Modified

Published: 2024-06-04T19:20:14.060

Modified: 2024-11-21T09:22:42.543

Link: CVE-2024-36857

cve-icon Redhat

No data.