Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:37560
HistoryOct 14, 2022 - 9:35 a.m.

Command Injection

2022-10-1409:35:28
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
kylin
command injection
system parameters
configuration overwrites
attacker
specially crafted request
operating system command

0.041 Low

EPSS

Percentile

92.2%

JSON

kylin is vulnerable to command injection. The vulnerability exists when overwriting system parameters in the configuration overwrites menu which allows an attacker to send a specially crafted request using the value parameter and inject any operating system command into the system.

Related

cve 2
cvelist 2
osv 4
nvd 2
github 2
f5 1
prion 2
cve
cve
CVE-2022-24697
2022-10-13 13:15:09
CVE-2022-43396
2022-12-30 11:15:10
cvelist
cvelist
CVE-2022-24697 Apache Kylin prior to 4.0.2 allows command injection when the configuration overwrites function overwrites system parameters
2022-10-13 00:00:00
CVE-2022-43396 Apache Kylin: Command injection by Useless configuration
2022-12-30 10:30:45
osv
osv
CVE-2022-24697
2022-10-13 13:15:09
Apache Kylin vulnerable to remote code execution
2023-07-06 19:24:01
CVE-2022-43396
2022-12-30 11:15:10
nvd
nvd
CVE-2022-24697
2022-10-13 13:15:09
CVE-2022-43396
2022-12-30 11:15:10
github
github
Apache Kylin vulnerable to remote code execution
2023-07-06 19:24:01
Apache Kylin vulnerable to Command injection by Useless configuration
2022-12-30 12:30:25
f5
f5
K13249530 : Apache Kylin vulnerability CVE-2022-24697
2022-10-24 00:00:00
prion
prion
Command injection
2022-10-13 13:15:00
Input validation
2022-12-30 11:15:00

0.041 Low

EPSS

Percentile

92.2%

JSON
Related for VERACODE:37560
cve2cvelist2osv4nvd2github2f51prion2