Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-30896

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - InfluxDB OSS 2.x through 2.7.11 stores the administrative operator token under the default organization which allows authorized users with read access to the...

9.1CVSS7.1AI score0.05208EPSS
Exploits3References2
Packet Storm
Packet Storm
added 2025/04/08 12:0 a.m.285 views

📄 InfluxDB OSS 2.7.11 Privilege Escalation

InfluxDB OSS versions 2.7.11 and below suffer from a privilege escalation vulnerability. Exploit Title: InfluxDB OSS Operator Privilege Escalation via BusinessLogic Flaw Date: 22/03/2024 Exploit Author: Andrea Pasin Xenom0rph97 Researcher Homepage: https://xenom0rph97.github.io/xeno/ GitHub Explo...

9.1CVSS9.1AI score0.05208EPSS
Exploits3
Exploit DB
Exploit DB
added 2025/04/08 12:0 a.m.292 views

InfluxDB OSS 2.7.11 - Operator Token Privilege Escalation

Exploit Title: InfluxDB OSS Operator Privilege Escalation via BusinessLogic Flaw Date: 22/03/2024 Exploit Author: Andrea Pasin Xenom0rph97 Researcher Homepage: https://xenom0rph97.github.io/xeno/ GitHub Exploit repo: https://github.com/XenoM0rph97/CVE-2024-30896 Software Link:...

9.1CVSS7.4AI score0.05208EPSS
Exploits3
SUSE CVE
SUSE CVE
added 2024/11/28 4:3 a.m.3 views

SUSE CVE-2024-30896

InfluxDB OSS 2.x through 2.7.11 stores the administrative operator token under the default organization which allows authorized users with read access to the authorization resource of the default organization to retrieve the operator token. InfluxDB OSS 1.x, Enterprise, Cloud, Cloud Dedicated and...

9.1CVSS8.6AI score0.05208EPSS
Exploits3References3
Debian CVE
Debian CVE
added 2024/11/21 12:0 a.m.24 views

CVE-2024-30896

InfluxDB OSS 2.x through 2.7.11 stores the administrative operator token under the default organization which allows authorized users with read access to the authorization resource of the default organization to retrieve the operator token. InfluxDB OSS 1.x, Enterprise, Cloud, Cloud Dedicated and...

9.1CVSS8.2AI score0.05208EPSS
Exploits3
vulnersOsv
vulnersOsv
added 2024/11/20 11:17 p.m.4 views

acia (>=0.3.0 <=0.3.2), aocs-lab (>=0.0.7 <=0.0.15) +227 more potentially affected by CVE-2024-30896 via influxdb-client (>=1.12.0 <=1.7.0)

influxdb-client PYPI version =1.12.0, =0.3.0, =0.0.7, =1.0.0, =0.1.0, =1.0.8, =0.0.1, =0.1.6, =0.1.0a1, =1.0.37, =0.1.0, =0.5.0, =0.12.0, =1.6.0, =20.0.0, =0.1.0, =1.16.0 and more Source cves: CVE-2024-30896 Source advisory: SNYK:PYTHON-INFLUXDBCLIENT-8422793...

9.1CVSS7.2AI score0.05208EPSS
Exploits3
Rows per page
Query Builder