• caglararli@hotmail.com
  • 05386281520

CVE-2024-40636 | SteeltoeOSS up to 3.2.7 Eureka Service DiscoveryClient.cs ToMaskedString log file

Çağlar Arlı      -    50 Views

CVE-2024-40636 | SteeltoeOSS up to 3.2.7 Eureka Service DiscoveryClient.cs ToMaskedString log file

A vulnerability was found in SteeltoeOSS up to 3.2.7. It has been declared as problematic. Affected by this vulnerability is the function ToMaskedString of the file DiscoveryClient.cs of the component Eureka Service. The manipulation leads to sensitive information in log files. This vulnerability is known as CVE-2024-40636. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.