CVE-2024-46997 - DataEase Remote Command Execution Vulnerability

2 months ago 22
ARTICLE AD BOX
CVE ID : CVE-2024-46997
Published : Sept. 23, 2024, 4:15 p.m. | 24 minutes ago
Description : DataEase is an open source data visualization analysis tool. Prior to version 2.10.1, an attacker can achieve remote command execution by adding a carefully constructed h2 data source connection string. The vulnerability has been fixed in v2.10.1.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article