Security Advisory

CVE-2024-2243

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-10 10:14:47

Last updated 2025-11-04 22:05:38

Assigner fedora

State PUBLISHED

Description

A vulnerability was found in csmock where a regular user of the OSH service (anyone with a valid Kerberos ticket) can use the vulnerability to disclose the confidential Snyk authentication token and to run arbitrary commands on OSH workers.

← Browse all CVEs View on cve.org ↗