Jan v0.4.12 was discovered to contain an arbitrary file read vulnerability via the /v1/app/readFileSync interface.
Metrics
Affected Vendors & Products
References
History
Wed, 14 Aug 2024 21:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-31 |

Status: PUBLISHED
Assigner: mitre
Published: 2024-06-04T18:26:04.843Z
Updated: 2025-02-13T15:59:45.280Z
Reserved: 2024-05-30T00:00:00.000Z
Link: CVE-2024-36857

Updated: 2024-08-02T03:43:49.202Z

Status : Modified
Published: 2024-06-04T19:20:14.060
Modified: 2024-11-21T09:22:42.543
Link: CVE-2024-36857

No data.