{"id":"CVE-2024-37372","details":"The Permission Model assumes that any path starting with two backslashes \\ has a four-character prefix that can be ignored, which is not always true. This subtle bug leads to vulnerable edge cases.","aliases":["BIT-node-2024-37372","BIT-node-min-2024-37372"],"modified":"2026-03-23T04:59:39.997115904Z","published":"2025-01-09T01:15:08Z","related":["CGA-39q6-qwr5-x6h2","MGASA-2024-0282","SUSE-SU-2024:2543-1","SUSE-SU-2024:2574-1","openSUSE-SU-2024:14214-1","openSUSE-SU-2024:14435-1","openSUSE-SU-2025:15802-1"],"references":[{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20250502-0010/"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2024/07/11/6"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2024/07/19/3"}],"schema_version":"1.7.3"}