CVE-2024-24230 | Komm.One CMS 10.4.2.14 Velocity Template Engine getRuntime.exec os command injection

CVE-2024-24230 | Komm.One CMS 10.4.2.14 Velocity Template Engine getRuntime.exec os command injection

A vulnerability was found in Komm.One CMS 10.4.2.14. It has been declared as critical. Affected by this vulnerability is the function getRuntime.exec of the component Velocity Template Engine. The manipulation leads to os command injection. This vulnerability is known as CVE-2024-24230. The attack can be launched remotely. There is no exploit available.