CVE-2023-40050 in Chef Automateالمعلومات

الملخص

بحسب MITRE • 31/10/2023

Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

المصادر

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!