CVE-2024-42167 | FIWARE Keyrock up to 8.4 saml2.js generate_app_certificates os command injection

Inserito da Angelo Barbosa | Ago 12, 2024 | CVE

A vulnerability classified as critical has been found in FIWARE Keyrock up to 8.4. Affected is the function generate_app_certificates of the file controllers/saml2/saml2.js. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2024-42167. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-42167 | FIWARE Keyrock up to 8.4 saml2.js generate_app_certificates os command injection

Post correlati

CVE-2024-50155 | Linux Kernel up to 6.1.114/6.6.58/6.11.5 hung_task_timeout_secs cond_resched state issue

CVE-2024-52355 | Hyumika OSM Plugin up to 6.1.2 on WordPress cross site scripting

CVE-2024-29269 | Telesquare TLR-2005Ksh 1.0.0/1.1.4 Cmd command injection

CVE-2023-48682 | Acronis Cyber Protect up to 16 unit name cross site scripting