2024-03-18 09:03:28 +00:00
|
|
|
{
|
|
|
|
|
"id": "CVE-2024-28125",
|
|
|
|
|
"sourceIdentifier": "vultures@jpcert.or.jp",
|
|
|
|
|
"published": "2024-03-18T08:15:06.347",
|
2024-03-18 13:03:27 +00:00
|
|
|
"lastModified": "2024-03-18T12:38:25.490",
|
|
|
|
|
"vulnStatus": "Awaiting Analysis",
|
2024-03-18 09:03:28 +00:00
|
|
|
"descriptions": [
|
|
|
|
|
{
|
|
|
|
|
"lang": "en",
|
|
|
|
|
"value": "FitNesse all releases allows a remote authenticated attacker to execute arbitrary OS commands."
|
2024-03-18 15:03:26 +00:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"lang": "es",
|
|
|
|
|
"value": "Todas las versiones de FitNesse permiten que un atacante remoto autenticado ejecute comandos arbitrarios del sistema operativo."
|
2024-03-18 09:03:28 +00:00
|
|
|
}
|
|
|
|
|
],
|
|
|
|
|
"metrics": {},
|
|
|
|
|
"references": [
|
|
|
|
|
{
|
|
|
|
|
"url": "http://fitnesse.org/FitNesseDownload",
|
|
|
|
|
"source": "vultures@jpcert.or.jp"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"url": "https://github.com/unclebob/fitnesse",
|
|
|
|
|
"source": "vultures@jpcert.or.jp"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"url": "https://github.com/unclebob/fitnesse/blob/master/SECURITY.md",
|
|
|
|
|
"source": "vultures@jpcert.or.jp"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"url": "https://jvn.jp/en/jp/JVN94521208/",
|
|
|
|
|
"source": "vultures@jpcert.or.jp"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
