Home > Vulnerability Database > CVE-2024-6583

Mend.io Vulnerability Database

CVE-2024-6583

Date: March 20, 2025

A path traversal vulnerability exists in the latest version of stangirard/quivr. This vulnerability allows an attacker to upload files to arbitrary paths in an S3 bucket by manipulating the file path in the upload request.

Severity Score

4.3

Related Resources (3)

Url: https://nvd.nist.gov/vuln/detail/CVE-2024-6583

Url: https://huntr.com/bounties/c310b500-ec26-4121-8d3a-8e863181346f

Url: https://www.mend.io/vulnerability-database/CVE-2024-6583

Severity Score

4.3

Weakness Type (CWE)

Relative Path Traversal

CWE-23

CVSS v3.1

Base Score:	4.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2024-6583

Date: March 20, 2025

Severity Score

Related Resources (3)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?