| |
Vulnerability CVE-2024-31411
Published: 2024-07-17
| Description: |
Unrestricted Upload of File with dangerous type vulnerability in Apache StreamPipes.
Such a dangerous type might be an executable file that may lead to a remote code execution (RCE).
The unrestricted upload is only possible for authenticated and authorized users.
This issue affects Apache StreamPipes: through 0.93.0.
Users are recommended to upgrade to version 0.95.0, which fixes the issue.
|
Type:
CWE-434 (Unrestricted Upload of File with Dangerous Type)
References: |
https://lists.apache.org/thread/b0657okbwzg5xxs11hphvc9qrd9s70mt
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
