Lucene search
K

Arbitrary Code Injection

🗓️ 21 Apr 2024 11:12:37Reported by Snyk Security DatabaseType 
snyk
 snyk
🔗 security.snyk.io👁 1 Views

Mysql2 arbitrary code execution via timezone in readCodeFor; upgrade to 3.9.7 or higher.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
BDU FSTEC
The vulnerability of the readCodeFor function in the mysql2 library allows a hacker to execute arbitrary code.
3 Oct 202400:00
bdu_fstec
Chainguard
CVE-2024-21511 vulnerabilities
23 Apr 202405:15
cgr
Circl
CVE-2024-21511
24 Apr 202401:44
circl
CNNVD
mysql2 安全漏洞
23 Apr 202400:00
cnnvd
CVE
CVE-2024-21511
23 Apr 202405:00
cve
Cvelist
CVE-2024-21511
23 Apr 202405:00
cvelist
EUVD
EUVD-2024-1092
3 Oct 202520:07
euvd
Github Security Blog
MySQL2 for Node Arbitrary Code Injection
23 Apr 202406:30
github
NVD
CVE-2024-21511
23 Apr 202405:15
nvd
OSV
CGA-2XC9-49GC-XR3P
29 Jan 202600:42
osv
Rows per page
Vulners
Node
sidoraresmysql2Range<3.9.7

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

21 Apr 2024 11:12Current
7.1High risk
Vulners AI Score7.1
CVSS 3.19.8
EPSS0.01025
SSVC
1