CVE-2024-39909

🗓️ 12 Jul 2024 15:11:15Reported by [email protected]Type

KubeClarity SBOM and container image vulnerability detection tool has a time/boolean SQL Injection through packageID parameter in /api/applicationResources

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Vulnrichment	CVE-2024-39909 SQL Injection in the KubeClarity REST API	12 Jul 202414:34	–	vulnrichment
OSV	CVE-2024-39909	12 Jul 202415:15	–	osv
OSV	GO-2024-2981 SQL Injection in the KubeClarity REST API in github.com/openclarity/kubeclarity/backend	12 Jul 202416:45	–	osv
OSV	GHSA-5248-H45P-9PGW SQL Injection in the KubeClarity REST API	12 Jul 202413:56	–	osv
CVE	CVE-2024-39909	12 Jul 202415:15	–	cve
Cvelist	CVE-2024-39909 SQL Injection in the KubeClarity REST API	12 Jul 202414:34	–	cvelist
Veracode	SQL Injection	15 Jul 202407:24	–	veracode
Github Security Blog	SQL Injection in the KubeClarity REST API	12 Jul 202413:56	–	github

Source	Link
github	www.github.com/openclarity/kubeclarity/security/advisories/GHSA-5248-h45p-9pgw
github	www.github.com/openclarity/kubeclarity/blob/main/backend/pkg/database/id_view.go
github	www.github.com/openclarity/kubeclarity/commit/1d1178840703a72d9082b7fc4aea0a3326c5d294

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo