Security Advisory

CVE-2024-28892

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-21 14:41:53

Last updated 2024-11-21 16:03:31

Assigner talos

State PUBLISHED

Description

An OS command injection vulnerability exists in the name parameter of GoCast 1.1.3. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an unauthenticated HTTP request to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗