6 matches found
CVE-2023-40050
Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...
CVE-2023-40050
Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...
CVE-2023-40050 Automate Vulnerable to Malicious Content Uploaded Through Embedded Compliance Application
Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...
CVE-2023-40050
CVE-2023-40050 affects Chef Automate versions prior to and including 4.10.29. A remote code execution flaw exists when uploading a profile through the API or the user interface using the InSpec check command with a maliciously crafted profile. Affected component is the profile upload pathway in C...
CVE-2023-40050 Automate Vulnerable to Malicious Content Uploaded Through Embedded Compliance Application
Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...
CVE-2023-40050 Automate Vulnerable to Malicious Content Uploaded Through Embedded Compliance Application
Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution...