Filtered by vendor Redhat
Subscriptions
Filtered by product Trusted Profile Analyzer
Subscriptions
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-3508 | 1 Redhat | 1 Trusted Profile Analyzer | 2024-08-20 | 4.3 Medium |
A flaw was found in Bombastic, which allows authenticated users to upload compressed (bzip2 or zstd) SBOMs. The API endpoint verifies the presence of some fields and values in the JSON. To perform this verification, the uploaded file must first be decompressed. |
Page 1 of 1.