CVE-2024-42323 Information
Sep 22, 2024
cve
Description
SnakeYaml Deser Load Malicious xml rce vulnerability in Apache HertzBeat (incubating).
This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat (incubating): before 1.6.0.
Users are recommended to upgrade to version 1.6.0 which fixes the issue.
Reference
https://lists.apache.org/thread/r0c4tost4bllqc1n9q6rmzs1slgsq63t https://lists.apache.org/thread/dwpwm572sbwon1mknlwhkpbom2y7skbx
Share on: