Description

An issue was discovered in Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) 8.0 Initial Release through 10.4 Initial Release. An unauthenticated attacker can read arbitrary files.

INFO

Published Date :

2024-09-15T00:00:00.000Z

Last Modified :

2024-09-17T15:06:07.924Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-46938 vulnerability.

Vendors Products
Sitecore
  • Experience Commerce
  • Experience Manager
  • Experience Platform
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-46938.

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact