5 matches found
CVE-2024-56333
The CVE-2024-56333 entry concerns Onyxia-API remote code execution via an authenticated user. Concrete details across connected documents show that Onyxia-API versions prior to 2.8.2, 3.1.1, and 4.2.0 are affected. The root cause is a code-execution vulnerability that could allow an authenticated...
CVE-2024-56333 Remote code execution in onyxia-api
Onyxia is a web app that aims at being the glue between multiple open source backend technologies to provide a state of art working environment for data scientists. This critical vulnerability allows authenticated users to remotely execute code within the Onyxia-API, leading to potential...
CVE-2024-56333 Remote code execution in onyxia-api
Onyxia is a web app that aims at being the glue between multiple open source backend technologies to provide a state of art working environment for data scientists. This critical vulnerability allows authenticated users to remotely execute code within the Onyxia-API, leading to potential...
Onyxia 代码注入漏洞
Onyxia is an open source web application from InseeFrLab designed to be the glue between multiple open source backend technologies. A code injection vulnerability exists in Onyxia versions prior to 4.2.0, prior to 3.1.1, and prior to 2.8.2, which originates from the ability of an authenticated us...
PT-2024-36795 · Unknown · Onyxia-Api
Name of the Vulnerable Software and Affected Versions: Onyxia-API versions prior to 2.8.2 Onyxia-API versions prior to 3.1.1 Onyxia-API versions prior to 4.2.0 Description: This issue allows authenticated users to remotely execute code within the Onyxia-API, potentially leading to unauthorized...