cve/2024/CVE-2024-28716.md

CVE-2024-28716

Description

An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via the gateway.py component.

POC

Reference

• https://bugs.launchpad.net/solum/+bug/2047505
• https://bugs.launchpad.net/solum/+bug/2047505
• https://drive.google.com/file/d/11x-6CjWCyap8_W1JpVzun56HQkPNLtWT/view?usp=drive_link
• https://drive.google.com/file/d/11x-6CjWCyap8_W1JpVzun56HQkPNLtWT/view?usp=drive_link

Github

• https://github.com/fkie-cad/nvd-json-data-feeds