{"id":"CVE-2024-37372","details":"The Permission Model assumes that any path starting with two backslashes \\ has a four-character prefix that can be ignored, which is not always true. This subtle bug leads to vulnerable edge cases.","aliases":["BIT-node-2024-37372","BIT-node-min-2024-37372"],"modified":"2026-06-24T18:29:41.525503925Z","published":"2025-01-09T01:15:08Z","withdrawn":"2026-01-27T04:19:40.170042Z","related":["CGA-39q6-qwr5-x6h2","SUSE-SU-2024:2543-1","SUSE-SU-2024:2574-1","openSUSE-SU-2024:14214-1","openSUSE-SU-2024:14435-1","openSUSE-SU-2025:15802-1","openSUSE-SU-2026:11110-1"],"references":[{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20250502-0010/"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2024/07/11/6"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2024/07/19/3"}],"schema_version":"1.7.3"}