CVE-2024-45505

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-45505
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-45505.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-45505
Published
2024-11-18T09:15:05Z
Modified
2025-06-27T04:26:39Z
Summary
[none]
Details

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache HertzBeat (incubating).

This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat (incubating): before 1.6.1.

Users are recommended to upgrade to version 1.6.1, which fixes the issue.

References

Affected packages

Git / github.com/apache/hertzbeat

Affected ranges

Type
GIT
Repo
https://github.com/apache/hertzbeat
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
e27845273b1f4b45109bf4b59c3848148128fd1d