7 matches found
K000139680: MySQL2 vulnerability CVE-2024-21508
Security Advisory Description Versions of the package mysql2 before 3.9.4 are vulnerable to Remote Code Execution RCE via the readCodeFor function due to improper validation of the supportBigNumbers and bigNumberStrings values. CVE-2024-21508 Impact There is no impact; F5 products are not affecte...
0data (=1.0.0), 1.1.1-version (=1.0.0) +8621 more potentially affected by CVE-2024-21508 via mysql2 (>=0.11.8 <=3.9.3)
mysql2 NPM version =0.11.8, =0.0.27, =1.0.0, =0.0.4, =0.0.1, =0.0.2, =1.0.0, =0.0.1-alpha.5, =0.0.1-alpha.6 - @142vip/egg-grpc-client =0.0.1-alpha.4 and more Source cves: CVE-2024-21508 Source advisory: OSV:GHSA-FPW7-J2HG-69V5...
CVE-2024-21508
A flaw was found in the MySQL2 npm package. Affected versions of this package are vulnerable to remote code execution RCE via the readCodeFor function due to improper validation of the supportBigNumbers and bigNumberStrings values. Mitigation Mitigation for this issue is either not available or t...
CVE-2024-21508 vulnerabilities
Vulnerabilities for packages: sqlpad...
CVE-2024-21508 vulnerabilities
Vulnerabilities for packages: sqlpad...
CVE-2024-21508
Versions of the package mysql2 before 3.9.4 are vulnerable to Remote Code Execution RCE via the readCodeFor function due to improper validation of the supportBigNumbers and bigNumberStrings values...
CVE-2024-21508
CVE-2024-21508 affects the mysql2 npm package prior to version 3.9.4. The vulnerability is a Remote Code Execution (RCE) flaw in the readCodeFor function caused by improper validation of supportBigNumbers and bigNumberStrings. Affected software is the mysql2 library (Node.js), with public details...