CVE-2024-22033 | SUSE Package Hub/openSUSE Leap/openSUSE Tumbleweed OBS Service os command injection

Inserito da Angelo Barbosa | Ott 16, 2024 | CVE

A vulnerability has been found in SUSE Package Hub, openSUSE Leap and openSUSE Tumbleweed and classified as critical. This vulnerability affects unknown code of the component OBS Service. The manipulation leads to os command injection.

This vulnerability was named CVE-2024-22033. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-22033 | SUSE Package Hub/openSUSE Leap/openSUSE Tumbleweed OBS Service os command injection

Post correlati

CVE-2024-7552 | DataGear up to 5.0.0 Data Schema Page ConversionSqlParamValueMapper.java evaluateVariableExpression expression language injection (IAF3H7)

CVE-2024-3478 | Herd Effects Plugin up to 5.2.6 on WordPress cross-site request forgery

CVE-2024-26682 | Linux Kernel up to 6.7.4 mac80211 denial of service (ea88bde8e3fe/35e2385dbe78)

CVE-2023-5203 | WP Sessions Time Monitoring Full Automatic Plugin up to 1.0.8 on WordPress Query Parameter sql injection