CVE-2023-40050 in Chef Automate
要約
〜によって MITRE • 2023年10月31日
Upload profile either through API or user interface in Chef Automate prior to and including version 4.10.29 using InSpec check command with maliciously crafted profile allows remote code execution.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.