{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-17T22:28:03.631","vulnerabilities":[{"cve":{"id":"CVE-2024-9362","sourceIdentifier":"security@huntr.dev","published":"2025-03-20T10:15:48.220","lastModified":"2026-06-17T08:24:25.527","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated directory traversal vulnerability exists in Polyaxon, affecting the latest version. This vulnerability allows an attacker to retrieve directory information and file contents from the server without proper authorization, leading to sensitive information disclosure. The issue enables access to system directories such as `/etc`, potentially resulting in significant security risks."},{"lang":"es","value":"Existe una vulnerabilidad de navegación de directorios no autenticada en Polyaxon, que afecta a la última versión. Esta vulnerabilidad permite a un atacante recuperar información de directorios y el contenido de archivos del servidor sin la debida autorización, lo que conlleva la divulgación de información confidencial. El problema permite el acceso a directorios del sistema como `/etc`, lo que podría generar importantes riesgos de seguridad."}],"affected":[{"source":"security@huntr.dev","affectedData":[{"vendor":"polyaxon","product":"polyaxon/polyaxon","versions":[{"version":"unspecified","lessThanOrEqual":"latest","versionType":"custom","status":"affected"}]}]}],"metrics":{"cvssMetricV30":[{"source":"security@huntr.dev","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-03-20T17:53:04.673844Z","id":"CVE-2024-9362","options":[{"exploitation":"poc"},{"automatable":"yes"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"security@huntr.dev","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"references":[{"url":"https://huntr.com/bounties/d8dcb40f-ce76-4524-8d06-e0f12a07809d","source":"security@huntr.dev"}]}}]}