An issue discovered in import host feature in Ab Initio Metadata Hub and Authorization Gateway before 4.3.1.1 allows attackers to run arbitrary code via crafted modification of server configuration.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.abinitio.com/en/security-advisories/ab-2024-003/ |
History
Thu, 29 Aug 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Abinitio authorization Gateway
|
|
CPEs | cpe:2.3:a:abinitio:authorization_gateway:*:*:*:*:*:*:*:* cpe:2.3:a:abinitio:authorization_gateway:4.1.5.10:*:*:*:*:*:*:* cpe:2.3:a:abinitio:authorization_gateway:4.1.6.11:*:*:*:*:*:*:* cpe:2.3:a:abinitio:authorization_gateway:4.2.1.6:*:*:*:*:*:*:* cpe:2.3:a:abinitio:authorization_gateway:4.2.2.8:*:*:*:*:*:*:* cpe:2.3:a:abinitio:authorization_gateway:4.2.3.4:*:*:*:*:*:*:* cpe:2.3:a:abinitio:authorization_gateway:4.3.1.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Abinitio authorization Gateway
|
Thu, 08 Aug 2024 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Abinitio
Abinitio metadata Hub |
|
Weaknesses | CWE-94 | |
CPEs | cpe:2.3:a:abinitio:metadata_hub:*:*:*:*:*:*:*:* cpe:2.3:a:abinitio:metadata_hub:4.1.5.10:*:*:*:*:*:*:* cpe:2.3:a:abinitio:metadata_hub:4.1.6.11:*:*:*:*:*:*:* cpe:2.3:a:abinitio:metadata_hub:4.2.1.6:*:*:*:*:*:*:* cpe:2.3:a:abinitio:metadata_hub:4.2.2.8:*:*:*:*:*:*:* cpe:2.3:a:abinitio:metadata_hub:4.2.3.4:*:*:*:*:*:*:* cpe:2.3:a:abinitio:metadata_hub:4.3.1.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Abinitio
Abinitio metadata Hub |
|
Metrics |
cvssV3_1
|
Thu, 08 Aug 2024 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An issue discovered in import host feature in Ab Initio Metadata Hub and Authorization Gateway before 4.3.1.1 allows attackers to run arbitrary code via crafted modification of server configuration. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-08-08T00:00:00
Updated: 2024-08-08T19:32:43.294Z
Reserved: 2024-06-07T00:00:00
Link: CVE-2024-37382
Vulnrichment
Updated: 2024-08-08T19:22:43.036Z
NVD
Status : Analyzed
Published: 2024-08-08T18:15:10.317
Modified: 2024-08-29T14:29:32.920
Link: CVE-2024-37382
Redhat
No data.