CVE-2024-6834 | Open Mainframe Project Zowe up to 2.13.x APIML Spring Cloud Gateway certificate validation

Inserito da Angelo Barbosa | Lug 17, 2024 | CVE

A vulnerability was found in Open Mainframe Project Zowe up to 2.13.x. It has been classified as critical. This affects an unknown part of the component APIML Spring Cloud Gateway. The manipulation leads to improper certificate validation.

This vulnerability is uniquely identified as CVE-2024-6834. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6834 | Open Mainframe Project Zowe up to 2.13.x APIML Spring Cloud Gateway certificate validation

Post correlati

CVE-2024-4879 | ServiceNow Now Platform improper validation of specified type of input (KB1645154)

CVE-2024-27565 | ChatGPT-wechat-personal a0857f6 weixin.php server-side request forgery

CVE-2024-0852 | coreActivity Plugin up to 1.8 on WordPress cross site scripting

CVE-2024-0821 | Cost of Goods Sold Plugin up to 3.2.8 on WordPress cross site scripting