Gotenberg Fixes Security Vulnerability in Version 8.1.0
CVE-2024-40639

8.2HIGH

Key Information:

Vendor: Gotenberg
Status: Gotenberg
Vendor: CVE Published:; 17 July 2024

What is CVE-2024-40639?

The vulnerability reported as CVE-2024-40639 pertains to a duplicate issue already identified in prior advisories. This highlights the ongoing challenges in vulnerability management and the importance of maintaining up-to-date security practices. Users and administrators of the Gotenberg Document Automation product should follow the latest security advisories and patch guidance to safeguard against potential exploits that may arise from improperly managed vulnerabilities.

Affected Version(s)

gotenberg < 8.1.0

References

https://github.com/gotenberg/gotenberg/security/advisorie...

x_refsource_CONFIRM

https://github.com/gotenberg/gotenberg/commit/ad152e62e51...

x_refsource_MISC

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 17, 2024
Vulnerability Reserved
Jul 8, 2024