CVE-2024-45106 | Apache Ozone 1.4.0 S3 Secret improper authentication

Inserito da Angelo Barbosa | Dic 2, 2024 | CVE

A vulnerability has been found in Apache Ozone 1.4.0 and classified as critical. This vulnerability affects unknown code of the component S3 Secret Handler. The manipulation leads to improper authentication.

This vulnerability was named CVE-2024-45106. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45106 | Apache Ozone 1.4.0 S3 Secret improper authentication

Post correlati

CVE-2023-50201 | D-Link G416 cfgsave command injection (ZDI-23-1817)

CVE-2023-52574 | Linux Kernel up to 6.5.5 team vlan_dev_hard_header null pointer dereference

CVE-2023-23639 | MainWP Staging Extension Plugin up to 4.0.3 on WordPress authorization

CVE-2024-9858 | Google Cloud Migrate to Containers up to 1.2.2 default permission