CVE-2024-34274

May 21, 2024, 8:15 p.m.

Tags

cve@mitre.org
2024-05-21
CVE-2024-34274

Product(s) Impacted

OpenBD

  • 20210306203917-6cbe797

Description

OpenBD 20210306203917-6cbe797 is vulnerable to Deserialization of Untrusted Data. The cookies bdglobals and bdclient_spot of the OpenBD software uses serialized data, which can be used to execute arbitrary code on the system. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Weaknesses

Date

Published: May 21, 2024, 8:15 p.m.

Last Modified: May 21, 2024, 8:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://github.com/OpenBD/openbd-core/issues/89
cve@mitre.org