CVE-2024-42167 | FIWARE Keyrock up to 8.4 saml2.js generate_app_certificates os command injection

Inserito da Angelo Barbosa | Ago 12, 2024 | CVE

A vulnerability classified as critical has been found in FIWARE Keyrock up to 8.4. Affected is the function generate_app_certificates of the file controllers/saml2/saml2.js. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2024-42167. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-42167 | FIWARE Keyrock up to 8.4 saml2.js generate_app_certificates os command injection

Post correlati

CVE-2024-21747 | weDevs WP ERP Plugin up to 1.12.8 on WordPress sql injection

CVE-2024-34478 | btcd up to 0.23.x data authenticity

CVE-2024-47660 | Linux Kernel up to 5.10.225/5.15.166/6.1.108/6.6.49/6.10.8 fsnotify __fsnotify_update_child_dentry_flags Privilege Escalation

CVE-2024-38428 | GNU wget up to 1.24.5 Semicolon url.c unknown vulnerability