Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in RTI Connext Professional (System Designer) allows OS Command Injection.This issue affects Connext Professional: from 7.0.0 before 7.3.0.2, from 6.1.0 before 6.1.2.19.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.rti.com/vulnerabilities/#cve-2024-52058 |
History
Mon, 23 Dec 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 13 Dec 2024 10:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in RTI Connext Professional (System Designer) allows OS Command Injection.This issue affects Connext Professional: from 7.0.0 before 7.3.0.2, from 6.1.0 before 6.1.2.19. | |
Title | Potential arbitrary command execution in System Designer while parsing malicious HTTP/REST requests | |
Weaknesses | CWE-78 | |
References |
| |
Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: RTI
Published: 2024-12-13T10:17:25.490Z
Updated: 2024-12-23T20:06:56.318Z
Reserved: 2024-11-05T19:04:16.675Z
Link: CVE-2024-52058
Vulnrichment
Updated: 2024-12-23T20:06:52.853Z
NVD
Status : Received
Published: 2024-12-13T11:15:07.900
Modified: 2024-12-13T11:15:07.900
Link: CVE-2024-52058
Redhat
No data.