CVE-2024-12760
Bentoml Open Redirect Vulnerability
Description
Rejected reason: ** REJECT ** DO NOT USE THIS CVE ID NUMBER. The Rejected CVE Record is a duplicate of CVE-2024-4940. Notes: All CVE users should reference CVE-2024-4940 instead of this CVE Record. All references and descriptions in this candidate have been removed to prevent accidental usage.
INFO
Published Date :
March 20, 2025, 10:15 a.m.
Last Modified :
April 15, 2025, 4:15 p.m.
Remotely Exploit :
No
Source :
[email protected]
Solution
- Disregard this CVE entry.
- Consult the referenced CVE for details.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2024-12760 vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2024-12760 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
CVE Rejected by [email protected]
Apr. 15, 2025
Action Type Old Value New Value -
CVE Modified by [email protected]
Apr. 15, 2025
Action Type Old Value New Value Changed Description An open redirect vulnerability in bentoml/bentoml v1.3.9 allows a remote unauthenticated attacker to redirect users to arbitrary websites via a specially crafted URL. This can be exploited for phishing attacks, malware distribution, and credential theft. Rejected reason: ** REJECT ** DO NOT USE THIS CVE ID NUMBER. The Rejected CVE Record is a duplicate of CVE-2024-4940. Notes: All CVE users should reference CVE-2024-4940 instead of this CVE Record. All references and descriptions in this candidate have been removed to prevent accidental usage. Removed CVSS V3 huntr.dev: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Removed CWE huntr.dev: CWE-601 Removed Reference huntr.dev: https://huntr.com/bounties/2a284ff6-cc6c-4a10-b72e-1bb31c842bca -
New CVE Received by [email protected]
Mar. 20, 2025
Action Type Old Value New Value Added Description An open redirect vulnerability in bentoml/bentoml v1.3.9 allows a remote unauthenticated attacker to redirect users to arbitrary websites via a specially crafted URL. This can be exploited for phishing attacks, malware distribution, and credential theft. Added CVSS V3 AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Added CWE CWE-601 Added Reference https://huntr.com/bounties/2a284ff6-cc6c-4a10-b72e-1bb31c842bca