CVE-2024-57971 - Knowage DataSourceResource JNDI Injection Vulnerability
CVE ID : CVE-2024-57971 Published : Feb. 16, 2025, 4:15 a.m. | 1 hour, 44 minutes ago Description : DataSourceResource.java in the SpagoBI API support in Knowage Server in KNOWAGE before 8.1.30 does not ensure that java:comp/env/jdbc/ occurs at the beginning of a JNDI Name. Severity: 9.1 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2024-57971
Published : Feb. 16, 2025, 4:15 a.m. | 1 hour, 44 minutes ago
Description : DataSourceResource.java in the SpagoBI API support in Knowage Server in KNOWAGE before 8.1.30 does not ensure that java:comp/env/jdbc/ occurs at the beginning of a JNDI Name.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : Feb. 16, 2025, 4:15 a.m. | 1 hour, 44 minutes ago
Description : DataSourceResource.java in the SpagoBI API support in Knowage Server in KNOWAGE before 8.1.30 does not ensure that java:comp/env/jdbc/ occurs at the beginning of a JNDI Name.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
