Command Injection Vulnerability in Apache HertzBeat (incubating)

CVE-2024-45505

Currently unrated 🤨

Key Information

Vendor: Apache
Status: Apache Hertzbeat
Vendor: CVE Published:; 18 November 2024

Summary

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache HertzBeat (incubating). This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat (incubating): before 1.6.1. Users are recommended to upgrade to version 1.6.1, which fixes the issue.

Affected Version(s)

Apache HertzBeat < 1.6.1

Timeline

Vulnerability published.
Nov 18, 2024
Vulnerability Reserved.
Aug 31, 2024

Collectors

NVD DatabaseMitre Database

Credit

Unam4

Springkilll

yemoli

yulate