github.com/heketi/heketi is vulnerable to remote code execution (RCE) attacks. The library doesn’t properly validate unmarshalled structures in messages, allowing a malicious user to inject and execute arbitrary code.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/heketi/heketi | eq | HEAD | |
github.com/heketi/heketi | le | 5.0.0 | |
github.com/heketi/heketi | eq | HEAD | |
github.com/heketi/heketi | le | 5.0.0 |