Podatność CVE-2024-22033
Publikacja: 2024-10-16

Opis:
The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The attacker could provide a configuration to the service that allowed to execute command in later steps

Typ:

CWE-78

 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') )

 Referencje:
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-22033
Copyright 2024, cxsecurity.com

 

Back to Top