Lucene search
Veracode Vulnerability DatabaseVERACODE:46205HistoryApr 04, 2024 - 7:11 a.m.
Arbitrary Code Execution
2024-04-0407:11:09
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
dolibarr
vulnerability
arbitrary code execution
installation
attacker
network access
crafted input
software
dolibarr/dolibarr is vulnerable to Arbitrary Code Execution. The vulnerability is due to insufficient sanitization during the installation process, enabling an attacker with adjacent network access to execute arbitrary code by providing specially crafted input.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dolibarr/dolibarr | le | 15.0.3 | |
| dolibarr/dolibarr | le | 15.0.3 |
Related
cve
cve
CVE-2024-29477
2024-04-03 12:15:13
cvelist
cvelist
CVE-2024-29477
2024-04-03 00:00:00
osv
osv
Dolibarr ERP CRM Code Injection vulnerability during installation
2024-04-03 12:31:06
github
github
Dolibarr ERP CRM Code Injection vulnerability during installation
2024-04-03 12:31:06
nvd
nvd
CVE-2024-29477
2024-04-03 12:15:13