18Mar
CVE-2024-24230 | Komm.One CMS 10.4.2.14 Velocity Template Engine getRuntime.exec os command injection
A vulnerability was found in Komm.One CMS 10.4.2.14. It has been declared as critical. Affected by this vulnerability is the functiongetRuntime.exec
of the component Velocity Template Engine. The manipulation leads to os command injection.
This vulnerability is known as CVE-2024-24230. The attack can be launched remotely. There is no exploit available.