CVE-2024-6300

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-6300

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-6300.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-6300

Published

2024-06-25T13:02:01.082Z

Modified

2025-12-02T00:23:35.967859Z

Severity

3.7 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

Incomplete Cleanup in Conduit

Details

Incomplete cleanup when performing redactions in Conduit, allowing an attacker to check whether certain strings were present in the PDU before redaction

Database specific

{
    "cna_assigner": "GitLab",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/6xxx/CVE-2024-6300.json",
    "cwe_ids": [
        "CWE-459"
    ]
}

References

Affected packages

Git / gitlab.com/famedly/conduit

Affected ranges

Type: GIT
Repo: https://gitlab.com/famedly/conduit
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

7a5b8930134cf7ea5ff9880e6fa468b2b3e05c98

Affected versions

v0.*

v0.2.0

v0.3.0

v0.4.0

v0.5.0

v0.6.0

v0.7.0

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-6300.json"