CVE-2024-35182 | Meshery up to 0.7.21 API /api/v2/events sql injection (GHSL-2024-013)

Inserito da Angelo Barbosa | Mag 27, 2024 | CVE

A vulnerability has been found in Meshery up to 0.7.21 and classified as critical. This vulnerability affects unknown code of the file /api/v2/events of the component API. The manipulation leads to sql injection.

This vulnerability was named CVE-2024-35182. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-35182 | Meshery up to 0.7.21 API /api/v2/events sql injection (GHSL-2024-013)

Post correlati

CVE-2024-1973 | OpenText Secure Content Manager up to 23.3 privileges management

CVE-2024-20882 | Samsung Mobile Devices Bootloader out-of-bounds

CVE-2023-49823 | BoldThemes Bold Page Builder Plugin up to 4.6.1 on WordPress cross site scripting

CVE-2024-40336 | idcCMS 1.35 Image Advertising Management cross site scripting