CVE-2024-27307 vulnerabilities

🗓️ 06 Mar 2024 20:15:47Reported by ChainguardType

CVE-2024-27307 vulnerabilities in renovate softwar

Reporter	Title	Published	Views	Family All 27
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container instances that run or edit flows containing JSONata mapping are vulnerable to arbitrary code execution due to [CVE-2024-27307]	2 Apr 202410:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Edge Application Manager 4.5.5 addresses the security vulnerabilities listed in the CVEs below.	19 Apr 202420:36	–	ibm
IBM Security Bulletins	Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in jsonata-js JSONata	26 Feb 202518:40	–	ibm
IBM Security Bulletins	Security Bulletin: Netcool Operations Insights 1.6.13 addresses multiple security vulnerabilities.	31 Jul 202411:01	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise is vulnerable to a denial of service and remote attack due to node.js jose module and jsonata-js JSONata (CVE-2024-28176, CVE-2024-27307)	16 Apr 202415:42	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Maximo Application Suite uses jsonata-1.8.6 which is vulnerable to CVE-2024-27307, CVE-2022-34169, CVE-2023-20861, CVE-2023-3635, CVE-2018-10237, CVE-2023-33201, CVE-2023-33202, CVE-2023-45288, CVE-2023-20863	28 Jan 202522:08	–	ibm
BDU FSTEC	The vulnerability of the JSONata data transformation software lies in the uncontrolled modification of prototype attributes, allowing attackers to execute arbitrary code or cause service failures.	19 Mar 202400:00	–	bdu_fstec
Circl	CVE-2024-27307	6 Mar 202421:26	–	circl
CNNVD	JSONata Security Vulnerabilities	6 Mar 202400:00	–	cnnvd
CVE	CVE-2024-27307	6 Mar 202419:24	–	cve