CVE-2024-2056
Last modified
CVE-2024-2056 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Services that are running and bound to the loopback interface on the Artica Proxy are accessible through the proxy service. In particular, the "tailon" service is running, running as the root user, is bound to the loopback interface, and is listening on TCP port 7050. EPSS estimates a 16.71% chance of exploitation in the next 30 days.
Description
Services that are running and bound to the loopback interface on the Artica Proxy are accessible through the proxy service. In particular, the "tailon" service is running, running as the root user, is bound to the loopback interface, and is listening on TCP port 7050. Security issues associated with exposing this network service are documented at gvalkov's 'tailon' GitHub repo. Using the tailon service, the contents of any file on the Artica Proxy can be viewed.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Articatech | Artica Proxy | 4.50.000000 |
References
- http://seclists.org/fulldisclosure/2024/Mar/14Exploit, Mailing List, Third Party Advisory
- https://github.com/gvalkov/tailon#securityNot Applicable
- https://korelogic.com/Resources/Advisories/KL-001-2024-004.txtExploit, Third Party Advisory
- http://seclists.org/fulldisclosure/2024/Mar/14Exploit, Mailing List, Third Party Advisory
- https://github.com/gvalkov/tailon#securityNot Applicable
- https://korelogic.com/Resources/Advisories/KL-001-2024-004.txtExploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2024-2056?
How severe is CVE-2024-2056?
How do I fix CVE-2024-2056?
Are you affected by CVE-2024-2056?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST