Security Advisory

CVE-2024-47910

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-04 00:00:00

Last updated 2024-10-04 22:16:52

Assigner mitre

State PUBLISHED

Description

An issue was discovered in SonarSource SonarQube before 9.9.5 LTA and 10.x before 10.5. A SonarQube user with the Administrator role can modify an existing configuration of a GitHub integration to exfiltrate a pre-signed JWT.

← Browse all CVEs View on cve.org ↗