Lucene search
K

CVE-2024-3955 Arbitrary code execution in CraftBeerPi 4

🗓️ 02 May 2024 09:43:51Reported by CERT-PLType 
cvelist
 cvelist
🔗 www.cve.org👁 18 Views

Arbitrary code execution in CraftBeerPi 4 due to unvalidated URL paramete

Related
Affected
Refs
ReporterTitlePublishedViews
Family
CNNVD
CraftBeerPi 安全漏洞
2 May 202400:00
cnnvd
CVE
CVE-2024-3955
2 May 202409:43
cve
Github Security Blog
CraftBeerPi 4 allows arbitrary code execution
2 May 202412:30
github
NVD
CVE-2024-3955
2 May 202410:15
nvd
OSV
GHSA-4F92-W438-F484 CraftBeerPi 4 allows arbitrary code execution
2 May 202412:30
osv
OSV
PYSEC-2026-308 CraftBeerPi 4 allows arbitrary code execution
29 Jun 202611:50
osv
Positive Technologies
PT-2024-28526
2 May 202400:00
ptsecurity
Positive Technologies
PT-2026-53402
29 Jun 202600:00
ptsecurity
PyPA
CraftBeerPi 4 allows arbitrary code execution
29 Jun 202611:50
pypa
Veracode
Arbitrary Code Injection
13 Dec 202507:12
veracode
Rows per page
[
  {
    "collectionURL": "https://pypi.org/project/cbpi4/",
    "defaultStatus": "unaffected",
    "product": "CraftBeerPi 4",
    "repo": "https://github.com/PiBrewing/craftbeerpi4",
    "vendor": "PiBrewing",
    "versions": [
      {
        "lessThan": "4.4.1.a1 (commit 57572c7)",
        "status": "affected",
        "version": "4.0.0.58 (commit 563fae9)",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "CraftBeerPi 4",
    "repo": "https://github.com/craftbeerpi/craftbeerpi4",
    "vendor": "CraftBeerPi - Brewing Controller",
    "versions": [
      {
        "lessThanOrEqual": "*",
        "status": "affected",
        "version": "4.0.0.58 (commit 563fae9)",
        "versionType": "git"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

02 May 2024 09:43Current
7.5High risk
Vulners AI Score7.5
EPSS0.01139
18