Access Restriction Bypass Affecting opentera package, versions [,1.2.6)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsSnyk Learn
Learn about Access Restriction Bypass vulnerabilities in an interactive lesson.
Start learning- Snyk IDSNYK-PYTHON-OPENTERA-7361838
- published24 Jun 2024
- disclosed1 Jun 2024
- creditUnknown
Introduced: 1 Jun 2024
CVE NOT AVAILABLE CWE-284 (opens in a new tab)Common Weakness Enumeration (CWE) is a category system for software weaknesses
How to fix?
Upgrade opentera to version 1.2.6 or higher.
Overview
opentera is an OpenTera base package
Affected versions of this package are vulnerable to Access Restriction Bypass due to unrestricted ranges for each service which allows attackers to access internal ports.