Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/04/25 1:17 p.m.18 views

CVE-2024-55238

OpenMetadata =1.4.1 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the WorkflowDAO interface. The workflowtype and status parameters can be used to build a SQL query...

8.8CVSS7AI score0.00531EPSS
Exploits1References1
OSV
OSV
added 2025/04/17 6:31 p.m.3 views

GHSA-X8PM-WRG2-MQMX OpenMetadata SQL Injection

OpenMetadata =1.4.1 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the WorkflowDAO interface. The workflowtype and status parameters can be used to build a SQL query...

7.1CVSS5.9AI score0.00531EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2025/04/17 6:31 p.m.10 views

OpenMetadata SQL Injection

OpenMetadata =1.4.1 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the WorkflowDAO interface. The workflowtype and status parameters can be used to build a SQL query...

8.8CVSS7.3AI score0.00531EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2025/04/17 4:15 p.m.9 views

CVE-2024-55238

OpenMetadata =1.4.1 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the WorkflowDAO interface. The workflowtype and status parameters can be used to build a SQL query...

8.8CVSS0.00531EPSS
Exploits1References3
CVE
CVE
added 2025/04/17 12:0 a.m.56 views

CVE-2024-55238

OpenMetadata

8.8CVSS7.1AI score0.00531EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2025/04/17 12:0 a.m.11 views

CVE-2024-55238

OpenMetadata =1.4.1 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the WorkflowDAO interface. The workflowtype and status parameters can be used to build a SQL query...

7.1CVSS0.00531EPSS
Exploits1References3
OSV
OSV
added 2025/04/17 12:0 a.m.5 views

CVE-2024-55238

OpenMetadata =1.4.1 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the WorkflowDAO interface. The workflowtype and status parameters can be used to build a SQL query...

7.1CVSS8.6AI score0.00531EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/04/17 12:0 a.m.12 views

PT-2025-17195 · Unknown · Openmetadata

Name of the Vulnerable Software and Affected Versions: OpenMetadata versions 1.4.1 and earlier Description: The issue allows an attacker to extract information from the database. This is achieved through the listCount function in the WorkflowDAO interface, where the workflowtype and status...

8.8CVSS6.4AI score0.00531EPSS
Exploits1References11
Rows per page
Query Builder