CVE-2024-33396 - CERT CVE
ID CVE-2024-33396
Sažetak An issue in karmada-io karmada v1.9.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component.
Reference
CVSS
Base: 8.4
Impact: 5.8
Exploitability:2.0
Pristup
VektorSloženostAutentikacija
LOCAL LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH NONE
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
Zadnje važnije ažuriranje 03-07-2024 - 01:58
Objavljeno 02-05-2024 - 19:15