CVE-2024-47910 | SonarSource SonarQube up to 9.9.4 LTA/10.4 GitHub Integration access control

Posted by Angelo Barbosa | Oct 5, 2024 | CVE

A vulnerability was found in SonarSource SonarQube up to 9.9.4 LTA/10.4. It has been classified as critical. This affects an unknown part of the component GitHub Integration. The manipulation leads to improper access controls.

This vulnerability is uniquely identified as CVE-2024-47910. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47910 | SonarSource SonarQube up to 9.9.4 LTA/10.4 GitHub Integration access control

Related Posts

CVE-2024-39746 | IBM Sterling Connect Direct Web Services 6.0/6.1/6.2/6.3 cleartext transmission

CVE-2024-4596 | Kimai up to 2.15.0 Session PHPSESSIONID information disclosure

CVE-2024-0494 | Kashipara Billing Software 1.0 HTTP POST Request material_bill.php itemtypeid sql injection

CVE-2024-27302 | zeromicro go-zero authorization