Lucene search
CVE-2024-35182
Meshery open source manager SQL injection vulnerability may lead to arbitrary file write and unauthorized database access. Fixed in version 0.7.2
Show more
| Reporter | Title | Published | Views | Family All 8 |
|---|---|---|---|---|
 | GHSA-H7CM-JVPP-69XF Meshery SQL Injection vulnerability | 5 Aug 202421:29 | – | osv |
| CVE-2024-35182 | 27 May 202419:15 | – | osv |
| GO-2024-3051 Meshery SQL Injection vulnerability in github.com/layer5io/meshery | 6 Aug 202422:40 | – | osv |
 | CVE-2024-35182 GHSL-2024-014 Meshery SQL Injection vulnerability | 27 May 202418:18 | – | cvelist |
 | SQL Injection | 30 May 202410:40 | – | veracode |
 | CVE-2024-35182 GHSL-2024-014 Meshery SQL Injection vulnerability | 27 May 202418:18 | – | vulnrichment |
 | CVE-2024-35182 | 27 May 202419:15 | – | nvd |
 | Meshery SQL Injection vulnerability | 5 Aug 202421:29 | – | github |
[
{
"vendor": "meshery",
"product": "meshery",
"versions": [
{
"version": "< 0.7.22",
"status": "affected"
}
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| sort | query param | /api/v2/events | SQL injection vulnerability in the sort query parameter leading to arbitrary file write and data access. | CWE-89 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo27 May 2024 19:15Current
5.9Medium risk
Vulners AI Score5.9
CVSS35.9
EPSS0.00045
SSVC