Vulnerabilities > CVE-2024-22200 - Unspecified vulnerability in Vantage6 Vantage6-Ui

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

vantage6

NVD

Published: 2024-01-30

Updated: 2024-02-08

Summary

vantage6-UI is the User Interface for vantage6. The docker image used to run the UI leaks the nginx version. To mitigate the vulnerability, users can run the UI as an angular application. This vulnerability was patched in 4.2.0.

Vulnerable Configurations

Part	Description	Count
Application	Vantage6 Vantage6 Vantage6 UI *	1

References

https://github.com/vantage6/vantage6-UI/security/advisories/GHSA-8wxq-346h-xmr8
https://github.com/vantage6/vantage6-UI/commit/92e0fb5102b544d5bcc23980d973573733e2e020