cve/CVE-2024-49400.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

873 B

Raw Permalink Blame History

CVE-2024-49400

Description

Tacquito prior to commit 07b49d1358e6ec0b5aa482fcd284f509191119e2 was not properly performing regex matches on authorized commands and arguments. Configured allowed commands/arguments were intended to require a match on the entire string, but instead only enforced a match on a sub-string. That would have potentially allowed unauthorized commands to be executed.

873 B

Raw Permalink Blame History

CVE-2024-49400

Description

POC

Reference

Github

873 B Raw Permalink Blame History

CVE-2024-49400

Description

POC

Reference

Github

873 B

Raw Permalink Blame History