CVE-2024-29031 | Meshery up to 0.7.16 GetMeshSyncResources order sql injection (GHSL-2023-249)

Inserito da Angelo Barbosa | Mar 22, 2024 | CVE

A vulnerability has been found in Meshery up to 0.7.16 and classified as critical. Affected by this vulnerability is the function GetMeshSyncResources. The manipulation of the argument order leads to sql injection.

This vulnerability is known as CVE-2024-29031. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29031 | Meshery up to 0.7.16 GetMeshSyncResources order sql injection (GHSL-2023-249)

Post correlati

CVE-2024-6911 | PerkinElmer ProcessPlus up to 1.11.6507.0 on Windows file access

CVE-2024-3252 | SourceCodester Internship Portal Management System 1.0 admin/check_admin.php username/password sql injection

CVE-2024-24932 | Djo VK Poster Group Plugin up to 2.0.3 on WordPress cross site scripting

CVE-2021-47173 | Linux Kernel up to 5.12.8 uss720_probe memory leak