CVE-2024-6891

High

Attackers with a valid username and password can exploit a python code injection vulnerability during the natural login flow.

KoreLogic·CWE-94·Published 2024-08-07

CVSS

8.8

EPSS

0.01

KEV

Exploits

cve.orgen

125 chars

Attackers with a valid username and password can exploit a python code injection vulnerability during the natural login flow.

NVDen

125 chars

Attackers with a valid username and password can exploit a python code injection vulnerability during the natural login flow.

Los atacantes con un nombre de usuario y contraseña válidos pueden aprovechar una vulnerabilidad de inyección de código Python durante el flujo de inicio de sesión natural.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	8.8	—	—	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	NVD	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	cve.org	8.8	—	—	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3.1	Secondary	NVD	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H