6 matches found
CVE-2024-45505
Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache HertzBeat incubating. This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat incubating: before 1.6.1. Users are recommended to upgrade to versi...
CVE-2024-45505
creationtimestamp| type| source ---|---|--- 2024-11-18 08:47:26+00:00| seen| https://infosec.exchange/users/cve/statuses/113503085889412388 2024-11-18 10:41:45+00:00| seen| https://t.me/cvedetector/11305...
CVE-2024-45505 Apache HertzBeat: Exists Native Deser RCE and file writing vulnerabilities
Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache HertzBeat incubating. This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat incubating: before 1.6.1. Users are recommended to upgrade to versi...
CVE-2024-45505
CVE-2024-45505 concerns Apache HertzBeat (incubating) prior to 1.6.1, where an improper neutralization of special elements enables a Command Injection. The vulnerability affects execution paths that process constructed commands, allowing an attacker with network access (and with low privileges) t...
CVE-2024-45505 Apache HertzBeat: Exists Native Deser RCE and file writing vulnerabilities
Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache HertzBeat incubating. This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat incubating: before 1.6.1. Users are recommended to upgrade to versi...
CVE-2024-45505 Apache HertzBeat: Exists Native Deser RCE and file writing vulnerabilities
Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in Apache HertzBeat incubating. This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat incubating: before 1.6.1. Users are recommended to upgrade to versi...