CVE-2024-37084 | VMware Spring Cloud Data Flow up to 2.11.3 Skipper Server API unrestricted upload

Inserito da Angelo Barbosa | Lug 25, 2024 | CVE

A vulnerability classified as very critical was found in VMware Spring Cloud Data Flow up to 2.11.3. This vulnerability affects unknown code of the component Skipper Server API. The manipulation leads to unrestricted upload.

This vulnerability was named CVE-2024-37084. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37084 | VMware Spring Cloud Data Flow up to 2.11.3 Skipper Server API unrestricted upload

Post correlati

Fuji Electric Tellus Lite V-Simulator Input File out-of-bounds write (icsa-23-325-02)

Tenda AX1803 SetOnlineDevName buffer overflow

CVE-2023-41804 | Brainstorm Force Starter Templates Plugin up to 3.2.4 on WordPress server-side request forgery

CVE-2024-6302 | Conduit up to 0.6.0 insufficient permissions or privileges