CVE-2024-31848

CRITICAL NUCLEI

CData API Server < 23.4.8844 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-31848. PoCs published by Stuub. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository contains a functional Python script that exploits a path traversal vulnerability (CVE-2024-31848) in CData applications running on an embedded Jetty server. The exploit sends a crafted HTTP request to retrieve sensitive files (e.g., `getSettings.rsb?`) via directory traversal sequences.

Description

A path traversal vulnerability exists in the Java version of CData API Server < 23.4.8844 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain complete administrative access to the application.

Exploits (1)

nomisec WORKING POC 18 stars
by Stuub · poc
https://github.com/Stuub/CVE-2024-31848-PoC

The repository contains a functional Python script that exploits a path traversal vulnerability (CVE-2024-31848) in CData applications running on an embedded Jetty server. The exploit sends a crafted HTTP request to retrieve sensitive files (e.g., `getSettings.rsb?`) via directory traversal sequences.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: CData applications on embedded Jetty server
No auth needed
Prerequisites: Target URL with vulnerable CData application
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

CData API Server < 23.4.8844 - Path Traversal
CRITICALVERIFIEDby pussycat0x
Shodan: title:"CData - API Server"

References (1)

Core 1
Core References

Scores

CVSS v3 9.8
EPSS 0.0815
EPSS Percentile 94.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-22
Status published
Products (1)
CData/API Server < 23.4.8844
Published Apr 05, 2024
Tracked Since Feb 18, 2026