CVE-2024-48964 | Snyk Gradle Plugin prior 1.1294.0 Gradle Project Scanning os command injection

Inserito da Angelo Barbosa | Ott 23, 2024 | CVE

A vulnerability, which was classified as critical, was found in Snyk Gradle Plugin. Affected is an unknown function of the component Gradle Project Scanning. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2024-48964. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-48964 | Snyk Gradle Plugin prior 1.1294.0 Gradle Project Scanning os command injection

Post correlati

CVE-2024-33694 | Meks ThemeForest Smart Widget Plugin up to 1.5 on WordPress cross site scripting

CVE-2024-1895 | awordpresslife Event Monster Plugin up to 1.3.4 on WordPress deserialization

CVE-2024-6996 | Google Chrome up to 126.0.6478.182 Frames Privilege Escalation

CVE-2024-46548 | Kasa Tapo P125M/Kasa KP125M 1.0.3 certificate validation