cve/CVE-2024-43406.md at 93476d6c370e261fdc1b2b03a08066de45e4892d

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio 756086a9d1 Update CVE sources 2024-08-27 19:05

2024-08-27 19:05:50 +00:00

Description

LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. A user could utilize and exploit SQL Injection to allow the execution of malicious SQL query via Get method in sqlKvStore. This vulnerability is fixed in 1.14.2.

POC

Reference

https://github.com/lf-edge/ekuiper/security/advisories/GHSA-r5ph-4jxm-6j9p

Github

No PoCs found on GitHub currently.

921 B Raw Blame History

CVE-2024-43406

Description

POC

Reference

Github

921 B

Raw Blame History