cbcvebase.
CVE-2024-57971
published 2025-02-16

CVE-2024-57971: DataSourceResource.java in the SpagoBI API support in Knowage Server in KNOWAGE before 8.1.30 does not ensure that java:comp/env/jdbc/ occurs at the beginning…

PriorityP344critical9.1CVSS 3.1
AVNACLPRHUINSCCHIHAH
EPSS
0.67%
47.3th percentile
DataSourceResource.java in the SpagoBI API support in Knowage Server in KNOWAGE before 8.1.30 does not ensure that java:comp/env/jdbc/ occurs at the beginning of a JNDI Name.

Affected

1 ranges
VendorProductVersion rangeFixed in
engknowage< 8.1.308.1.30
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.