CVE-2025-24034 | himmelblau up to 0.7.14/0.8.2 himmelblau.conf logon_script d log file (GHSA-p989-2f5w-9cf6)

Inserito da Angelo Barbosa | Gen 23, 2025 | CVE

A vulnerability was found in himmelblau up to 0.7.14/0.8.2. It has been classified as problematic. This affects the function logon_script of the file /etc/himmelblau/himmelblau.conf. The manipulation of the argument d leads to sensitive information in log files.

This vulnerability is uniquely identified as CVE-2025-24034. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-24034 | himmelblau up to 0.7.14/0.8.2 himmelblau.conf logon_script d log file (GHSA-p989-2f5w-9cf6)

Post correlati

CVE-2024-34777 | Linux Kernel up to 5.15.160/6.1.92/6.6.32/6.9.3 map_benchmark.c map_benchmark_ioctl comparison

CVE-2024-39367 | Wavlink AC3000 M33A8.V5030.210505 firewall.cgi iptablesWebsFilterRun command injection (TALOS-2024-2023)

CVE-2024-6644 | zmops ArgusDBM up to 0.1.0 AviatorScript CalculateAlarm.java getDefaultClassLoader deserialization (Issue 64)

CVE-2024-33688 | Extend Themes Teluro Plugin up to 1.0.31 on WordPress cross-site request forgery