CVE-2024-45505 Information
Nov 20, 2024
cve
Description
Improper Neutralization of Special Elements used in a Command (‘Command Injection’) vulnerability in Apache HertzBeat (incubating).
This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat (incubating): before 1.6.1.
Users are recommended to upgrade to version 1.6.1 which fixes the issue.
Reference
https://lists.apache.org/thread/h8k14o1bfyod66p113pkgnt1s52p6p19 https://lists.apache.org/thread/gvbc68krhqhht7mkkkx7k13k6k6fdhy0
Share on: