CVE-2024-42167 | FIWARE Keyrock up to 8.4 saml2.js generate_app_certificates os command injection

Posted by Angelo Barbosa | Aug 12, 2024 | CVE

A vulnerability classified as critical has been found in FIWARE Keyrock up to 8.4. Affected is the function generate_app_certificates of the file controllers/saml2/saml2.js. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2024-42167. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-42167 | FIWARE Keyrock up to 8.4 saml2.js generate_app_certificates os command injection

Related Posts

CVE-2024-39739 | IBM Datacap Navigator 9.1.5/9.1.6/9.1.7/9.1.8/9.1.9 server-side request forgery (XFDB-296008)

CVE-2024-27287 | esphome Edit Configuration File API cross site scripting

CVE-2022-41738 | IBM Storage Scale Container Native Storage Access up to 5.1.7.0 improper authentication (XFDB-237812)

CVE-2024-5509 | Luxion KeyShot BIP File Parser uncontrolled search path