CVE-2024-55886 | opensearch-project data-prepper 2.10.0/2.10.1 getHttpAuthenticationService improper authentication (GHSA-725p-63vv-v948)

Inserito da Angelo Barbosa | Dic 12, 2024 | CVE

A vulnerability classified as critical was found in opensearch-project data-prepper 2.10.0/2.10.1. This vulnerability affects the function getHttpAuthenticationService. The manipulation leads to improper authentication.

This vulnerability was named CVE-2024-55886. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-55886 | opensearch-project data-prepper 2.10.0/2.10.1 getHttpAuthenticationService improper authentication (GHSA-725p-63vv-v948)

Post correlati

CVE-2024-47180 | badges shields prior server-2024-09-25 injection

CVE-2024-24861 | Linux Kernel up to 6.8-rc2 xc4000 Device Driver xc4000_get_frequency race condition

CVE-2023-52584 | Linux Kernel up to 6.1.76/6.6.15/6.7.3 mediatek clk_bulk_get use after free

CVE-2023-7014 | Author Box, Guest Author and Co-Authors for Your Posts Plugin ma_debug information disclosure