CVE-2024-12745 | Amazon Redshift Python Connector 2.1.4 Metadata API get_schemas/get_tables/get_columns sql injection

Posted by Angelo Barbosa | Dec 24, 2024 | CVE

A vulnerability has been found in Amazon Redshift Python Connector 2.1.4 and classified as critical. This vulnerability affects the function get_schemas/get_tables/get_columns of the component Metadata API. The manipulation leads to sql injection.

This vulnerability was named CVE-2024-12745. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-12745 | Amazon Redshift Python Connector 2.1.4 Metadata API get_schemas/get_tables/get_columns sql injection

Related Posts

CVE-2023-51506 | realmag777 WPCS Plugin up to 1.2.0 on WordPress cross site scripting

CVE-2024-1791 | CodeMirror Blocks Plugin up to 1.2.4 on WordPress cross site scripting

CVE-2024-41314 | TOTOLINK A6000R 1.0.1-B20201211.2000 vif_disable iface command injection

CVE-2024-42392 | Cesanta Mongoose Web Server up to 7.14 delimiters