Lucene search

PRIOn knowledge basePRION:CVE-2024-23770

HistoryJan 22, 2024 - 4:15 a.m.

Default credentials

2024-01-2204:15:00

PRIOn knowledge base

www.prio-n.com

security vulnerability

darkhttpd

credential disclosure

nvd

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

darkhttpd through 1.15 allows local users to discover credentials (for --auth) by listing processes and their arguments.

CPENameOperatorVersion
darkhttpdle1.15

CPE	Name	Operator	Version
	darkhttpd	le	1.15

References

www.openwall.com/lists/oss-security/2024/01/25/1

github.com/emikulic/darkhttpd/commit/2b339828b2a42a5fda105ea84934957a7d23e35d

github.com/emikulic/darkhttpd/compare/v1.14...v1.15