Lucene search
MitreCVE-2024-28717HistoryApr 22, 2024 - 12:15 p.m.
CVE-2024-28717
2024-04-2212:15:07
CWE-400
mitre
web.nvd.nist.gov
27
cve-2024-28717
openstack
storlets
remote code execution
gateway.py
nvd
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
AI Score
7.8
Confidence
Low
EPSS
0
Percentile
9.0%
An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via the gateway.py component.
Related
osv
osv
OpenStack Storlets arbitrary code execution vulnerability
2024-04-22 12:30:33
vulnrichment
vulnrichment
CVE-2024-28717
2024-04-22 00:00:00
github
github
OpenStack Storlets arbitrary code execution vulnerability
2024-04-22 12:30:33
veracode
veracode
Time-of-check Time-of-use (TOCTOU) Attack
2024-04-23 05:53:15
cvelist
cvelist
CVE-2024-28717
2024-04-22 00:00:00
nvd
nvd
CVE-2024-28717
2024-04-22 12:15:07
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
AI Score
7.8
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-28717