2 matches found
CVE-2024-28212
CVE-2024-28212 affects nGrinder prior to 3.5.9, where an outdated SnakeYAML version enables unsafe deserialization that could let a remote attacker run arbitrary code. The vulnerability stems from deserializing untrusted data via SnakeYAML within nGrinder’s stack. Affected software: nGrinder vers...
CVE-2024-28212
nGrinder before 3.5.9 uses old version of SnakeYAML, which could allow remote attacker to execute arbitrary code via unsafe deserialization...