Vulnerability Details CVE-2024-22779
Directory Traversal vulnerability in Kihron ServerRPExposer v.1.0.2 and before allows a remote attacker to execute arbitrary code via the loadServerPack in ServerResourcePackProviderMixin.java.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.143
EPSS Ranking 94.1%
CVSS Severity
CVSS v3 Score 8.8
References
- https://gist.github.com/apple502j/193358682885fe1a6708309ce934e4ed
- https://github.com/Kihron/ServerRPExposer/commit/8f7b829df633f59e828d677f736c53652d6f1b8f
- https://modrinth.com/mod/serverrpexposer
- https://gist.github.com/apple502j/193358682885fe1a6708309ce934e4ed
- https://github.com/Kihron/ServerRPExposer/commit/8f7b829df633f59e828d677f736c53652d6f1b8f
- https://modrinth.com/mod/serverrpexposer
Products affected by CVE-2024-22779
-
cpe:2.3:a:kihron:serverrpexposer:1.0.2