Check Point Reference: |
CPAI-2024-0214 |
Date Published: |
15 May 2024 |
Severity: |
Medium
|
Last Updated: |
Wednesday 15 May, 2024 |
Source: |
|
Industry Reference: | CVE-2024-28253 CVE-2024-28254 CVE-2024-28847 CVE-2024-28848
|
Protection Provided by: |
Security Gateway R81, R80, R77, R75 |
Who is Vulnerable? | OpenMetadata prior to 1.3.1 |
Vulnerability Description |
A SpEL injection vulnerability exists in OpenMetadata. Successful exploitation could result in arbitrary code execution under the security context of the vulnerable service. |