by vicarius
log in join community
by @jakaba
01 Jun 2024
#novel_exploit_analysis

An exploitation of a CVE vulnerability that has no prior exploit

publish

Authentication bypass with path parameter in OpenMetadata (CVE-2024-28255) - exploit

by @jakaba
by @jakaba
01 Jun 2024
#novel_exploit_analysis

An exploitation of a CVE vulnerability that has no prior exploit

publish

Authentication bypass with path parameter in OpenMetadata (CVE-2024-28255) - exploit

Apps

DPS
Data Protection SearchDell
19.5.1.*
19.4.0.*
19.5.0.*
19.6.4.*
19.6.1.*
19.6.2.*
*.*
19.6.0.*
19.6.3.*
19.2.0.*

PoC video

Summary

CVE-2024-28255 allows attackers to bypass authentication in OpenMetadata by exploiting path parameter vulnerabilities.

general

Description

Tags

#RCE#exposed_to_RCE_attack#CVE-2024-28255#auth_bypass#OpenMetadata
users/photos/clj8b3h1k16g10uoihwvzgsxi.png

@jakaba

74 posts

Total vcoins

0

Social media links

Comments (0)