admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-9194.md

20 lines
1.1 KiB
Markdown
Raw Normal View History

Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00
### [CVE-2024-9194](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9194)
![](https://img.shields.io/static/v1?label=Product&message=Octopus%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=2024.1.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2024.2.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2024.3.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-89%20Improper%20Neutralization%20of%20Special%20Elements%20used%20in%20an%20SQL%20Command%20('SQL%20Injection')&color=brightgreen)
### Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Linux and Microsoft Windows Octopus Server on Windows, Linux allows SQL Injection.This issue affects Octopus Server: from 2024.1.0 before 2024.1.13038, from 2024.2.0 before 2024.2.9482, from 2024.3.0 before 2024.3.12766.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds
Reference in New Issue Copy Permalink