CVE-2024-39909 | openclarity kubeclarity up to 2.23.0 Query String id_view.go sql injection

Inserito da Angelo Barbosa | Lug 12, 2024 | CVE

A vulnerability was found in openclarity kubeclarity up to 2.23.0. It has been classified as critical. This affects an unknown part of the file backend/pkg/database/id_view.go of the component Query String Handler. The manipulation leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-39909. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39909 | openclarity kubeclarity up to 2.23.0 Query String id_view.go sql injection

Post correlati

CVE-2024-21399 | Microsoft Edge prior 121.0.2277.98 Remote Code Execution

CVE-2024-4255 | Ruijie RG-UAC up to 20240419 gre_edit_commit.php name os command injection

CVE-2024-10372 | chidiwilliams buzz 1.1.0 buzz/model_loader.py download_model temp file

CVE-2023-49655 | MATLAB Plugin up to 2.11.0 on Jenkins XML File cross-site request forgery