VDB

GCVE-110-NCSC-2024-339

GCVE-110-NCSC-2024-339
Advisory Published
Vulnetix · Advisory published August 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Weaknesses (CWE)

CWE-787Out-of-bounds WriteCWE-835Loop with Unreachable Exit Condition ('Infinite Loop')CWE-416Use After FreeCWE-476NULL Pointer DereferenceCWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')CWE-772Missing Release of Resource after Effective LifetimeCWE-193Off-by-one ErrorCWE-125Out-of-bounds ReadCWE-404Improper Resource Shutdown or ReleaseCWE-94Improper Control of Generation of Code ('Code Injection')CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')CWE-273Improper Check for Dropped PrivilegesCWE-400Uncontrolled Resource ConsumptionCWE-280Improper Handling of Insufficient Permissions or PrivilegesCWE-20Improper Input ValidationCWE-74Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')CWE-295Improper Certificate ValidationCWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')CWE-129Improper Validation of Array IndexCWE-371-CWE-187Partial String ComparisonCWE-770Allocation of Resources Without Limits or ThrottlingCWE-401Missing Release of Memory after Effective LifetimeCWE-299Improper Check for Certificate RevocationCWE-319Cleartext Transmission of Sensitive InformationCWE-833DeadlockCWE-369Divide By ZeroCWE-130Improper Handling of Length Parameter InconsistencyCWE-532Insertion of Sensitive Information into Log FileCWE-77Improper Neutralization of Special Elements used in a Command ('Command Injection')CWE-918Server-Side Request Forgery (SSRF)CWE-115Misinterpretation of Input

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,738 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›