Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-2243

Опубликовано: 10 апр. 2024
Источник: nvd
CVSS3: 7.6
CVSS3: 8.8
EPSS Низкий

Описание

A vulnerability was found in csmock where a regular user of the OSH service (anyone with a valid Kerberos ticket) can use the vulnerability to disclose the confidential Snyk authentication token and to run arbitrary commands on OSH workers.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:csutils:csmock:*:*:*:*:*:*:*:*
Версия до 3.5.3 (исключая)

EPSS

Процентиль: 23%
0.00079
Низкий

7.6 High

CVSS3

8.8 High

CVSS3

Дефекты

CWE-78

Связанные уязвимости

redhat логотип

CVE-2024-2243

CVSS3: 7.6
redhat
почти 2 года назад

A vulnerability was found in csmock where a regular user of the OSH service (anyone with a valid Kerberos ticket) can use the vulnerability to disclose the confidential Snyk authentication token and to run arbitrary commands on OSH workers.

github логотип

GHSA-cjj3-f3rf-jf7w

CVSS3: 7.6
github
почти 2 года назад

A vulnerability was found in csmock where a regular user of the OSH service (anyone with a valid Kerberos ticket) can use the vulnerability to disclose the confidential Snyk authentication token and to run arbitrary commands on OSH workers.

EPSS

Процентиль: 23%
0.00079
Низкий

7.6 High

CVSS3

8.8 High

CVSS3

Дефекты

CWE-78