1 results (0.007 seconds)
CVSS: 8.5EPSS: 0%CPEs: 2EXPL: 0
CVSS: 8.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-52899 – IBM Data Virtualization Manager code execution
https://notcve.org/view.php?id=CVE-2024-52899
26 Nov 2024 — IBM Data Virtualization Manager for z/OS 1.1 and 1.2 could allow an authenticated user to inject malicious JDBC URL parameters and execute code on the server. IBM Data Virtualization Manager para z/OS 1.1 y 1.2 podría permitir que un usuario autenticado inyecte parámetros de URL JDBC maliciosos y ejecute código en el servidor. • https://www.ibm.com/support/pages/node/7177091 • CWE-94: Improper Control of Generation of Code ('Code Injection') •