User Enumeration Vulnerability in Portainer CE by Portainer
CVE-2024-29296

Currently unrated

Key Information:

Vendor

Portainer

Status
Portainer CE
Vendor
CVE Published:
10 April 2024

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸฃ EPSS 10%

What is CVE-2024-29296?

A user enumeration vulnerability has been identified in Portainer CE version 2.19.4. This security flaw arises during the user authentication process, where variations in response times may allow remote unauthenticated attackers to ascertain the validity of usernames. Such information could be leveraged to execute targeted attacks, making it imperative for users to address this vulnerability promptly. For further details, visit the official Portainer website or the GitHub reference.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://portainer.com
https://github.com/ThaySolis/CVE-2024-29296

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

JSON
.