Lucene search

CVE-2024-38346 Apache CloudStack: Unauthenticated cluster service port leads to remote execution

🗓️ 05 Jul 2024 13:57:40Reported by apacheType

CVE-2024-38346 Apache CloudStack: Unauthenticated cluster service port leads to remote executio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
OSV	CVE-2024-38346	5 Jul 202414:15	–	osv
Vulnrichment	CVE-2024-38346 Apache CloudStack: Unauthenticated cluster service port leads to remote execution	5 Jul 202413:40	–	vulnrichment
RedhatCVE	CVE-2024-38346	14 Feb 202511:47	–	redhatcve
CNVD	Apache CloudStack Code Injection Vulnerability	9 Jul 202400:00	–	cnvd
NVD	CVE-2024-38346	5 Jul 202414:15	–	nvd
CVE	CVE-2024-38346	5 Jul 202414:15	–	cve

[
  {
    "defaultStatus": "unaffected",
    "product": "Apache CloudStack",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThanOrEqual": "4.18.2.0",
        "status": "affected",
        "version": "4.0.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "4.19.0.1",
        "status": "affected",
        "version": "4.19.0.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread/6l51r00csrct61plkyd3qg3fj99215d1
cloudstack	www.cloudstack.apache.org/blog/security-release-advisory-4.19.0.2-4.18.2.1
openwall	www.openwall.com/lists/oss-security/2024/07/05/1
shapeblue	www.shapeblue.com/shapeblue-security-advisory-apache-cloudstack-security-releases-4-18-2-1-and-4-19-0-2/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Jul 2024 13:40Current

EPSS0.00681

CWE-94