CVE-2024-47219

2024-09-2100:00:00

mitre

github.com

vesoft

nebulagraph

3.8.0

shell command injection

AI Score

7.4

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

JSON

An issue was discovered in vesoft NebulaGraph through 3.8.0. It allows shell command injection.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:vesoft:nebulagraph_studio:*:*:*:*:*:*:*:*"
    ],
    "vendor": "vesoft",
    "product": "nebulagraph_studio",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "versionType": "custom",
        "lessThanOrEqual": "3.8.0"
      }
    ],
    "defaultStatus": "unknown"
  }
]