CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-52297

Tolgee is an open-source localization platform. Tolgee 3.81.1 included the all configuration properties in the PublicConfiguratioDTO publicly exposed to users. This vulnerability is fixed in v3.81.2.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.5%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/tolgee/tolgee-platform/pull/2481/files#diff-d16735590f0f2db7cd782e2966fa18426b94b5e4030fa8b1f5e00cd55686fe7f
https://github.com/tolgee/tolgee-platform/pull/2689/files
https://github.com/tolgee/tolgee-platform/security/advisories/GHSA-3wr3-889v-pgcj

Products affected by CVE-2024-52297

Tolgee » Tolgee » Version: 3.81.1

cpe:2.3:a:tolgee:tolgee:3.81.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-52297

Products

Pricing

Contact Us