• caglararli@hotmail.com
  • 05386281520

CVE-2024-43798 | jpillora chisel up to 1.9.x Environment Variable AUTH inconsistency between implementation and documented design (GHSA-38jh-8h67-m7mj)

Çağlar Arlı      -    28 Views

CVE-2024-43798 | jpillora chisel up to 1.9.x Environment Variable AUTH inconsistency between implementation and documented design (GHSA-38jh-8h67-m7mj)

A vulnerability, which was classified as problematic, was found in jpillora chisel up to 1.9.x. Affected is an unknown function of the component Environment Variable Handler. The manipulation of the argument AUTH leads to inconsistency between implementation and documented design. This vulnerability is traded as CVE-2024-43798. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.