angular-base64-upload Security Update Advisory (CVE-2024-42640)

Oct 16 2024

Overview

An update has been released to address vulnerabilities in angular-base64-upload. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-42640

angular-base64-upload versions: ~ 0.1.21 (excluded)

Resolved Vulnerabilities

Remote code execution vulnerability via demo/server.php in angular-base64-upload (CVE-2024-42640)

Vulnerability Patches

The following product-specific vulnerability patches have been made available with the latest update. If you are using an affected version, Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-42640

angular-base64-upload version: 0.1.21

References

[1] CVE-2024-42640 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-42640

[2] Unauthenticated RCE via Angular-Base64-Upload CVE-2024-42640

https://www.zyenra.com/blog/unauthenticated-rce-in-angular-base64-upload.html

[3] angular-base64-upload

https://github.com/adonespitogo/angular-base64-upload

angular-base64-upload Security Update Advisory (CVE-2024-42640)

Btcd Security Update Advisory (CVE-2024-38365)

Mozilla Products October 2024 1st Security Update Advisory

Tags:

Btcd Security Update Advisory (CVE-2024-38365)

Mozilla Products October 2024 1st Security Update Advisory