Security Advisory

CVE-2024-47911

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-04 00:00:00

Last updated 2024-10-04 22:16:42

Assigner mitre

State PUBLISHED

Description

In SonarSource SonarQube 10.4 through 10.5 before 10.6, a vulnerability was discovered in the authorizations/group-memberships API endpoint that allows SonarQube users with the administrator role to inject blind SQL commands.

← Browse all CVEs View on cve.org ↗