CVE-2024-1032 | openBI up to 1.0.8 Test Connection Databasesource.php testConnection deserialization

Inserito da Angelo Barbosa | Gen 29, 2024 | CVE

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization.

This vulnerability is known as CVE-2024-1032. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-1032 | openBI up to 1.0.8 Test Connection Databasesource.php testConnection deserialization

Post correlati

CVE-2024-36414 | SalesAgility SuiteCRM up to 7.14.3/8.6.0 server-side request forgery (GHSA-wg74-772c-8gr7)

CVE-2024-36574 | flatten-json 1.0.1 flatten-json/index.js module.exports.unflattenJSON prototype pollution

CVE-2024-51425 | Ethereum 1.12.2 WaterToken Contract permission

CVE-2024-26589 | Linux Kernel up to 4.19/5.15.147/6.1.74/6.6.13/6.7.1 BPF check_flow_keys_access out-of-bounds