14Mar
CVE-2024-24770 | vantage6 up to 4.2.1 API Route /recover/lost timing discrepancy (GHSA-45gq-q4xh-cp53)
A vulnerability, which was classified as problematic, has been found in vantage6 up to 4.2.1. This issue affects some unknown processing of the file /recover/lost of the component API Route Handler. The manipulation leads to observable timing discrepancy. The identification of this vulnerability is CVE-2024-24770. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.