Lucene search

SQLAlchemyDA unauthenticated arbitrary SQL query execution

🗓️ 07 Feb 2024 17:26:28Reported by GoogleType

osv🔗 osv.dev👁 12 Views

Unauthenticated arbitrary SQL query execution in SQLAlchemyD

Reporter	Title	Published	Views	Family All 7
CVE	CVE-2024-24811	7 Feb 202415:15	–	cve
Cvelist	CVE-2024-24811 Products.SQLAlchemyDA vulnerable to unauthenticated arbitrary SQL query execution	7 Feb 202414:54	–	cvelist
Github Security Blog	SQLAlchemyDA unauthenticated arbitrary SQL query execution	7 Feb 202417:28	–	github
Veracode	SQL Injection	8 Feb 202407:14	–	veracode
Prion	Spoofing	7 Feb 202415:15	–	prion
OSV	CVE-2024-24811	7 Feb 202415:15	–	osv
NVD	CVE-2024-24811	7 Feb 202415:15	–	nvd

Source	Link
github	www.github.com/zopefoundation/Products.SQLAlchemyDA/security/advisories/GHSA-r3jc-3qmm-w3pw
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-24811
github	www.github.com/zopefoundation/Products.SQLAlchemyDA/commit/e682b99f8406f20bc3f0f2c77153ed7345fd215a
github	www.github.com/zopefoundation/Products.SQLAlchemyDA

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Feb 2024 17:28Current

9.8High risk

Vulners AI Score9.8

CVSS39.8

EPSS0.00292