Back to search
CVE-2024-49400
Published: Oct 17, 2024
Modified: Nov 1, 2024
PUBLISHED
Description
Tacquito prior to commit 07b49d1358e6ec0b5aa482fcd284f509191119e2 was not properly performing regex matches on authorized commands and arguments. Configured allowed commands/arguments were intended to require a match on the entire string, but instead only enforced a match on a sub-string. That would have potentially allowed unauthorized commands to be executed.
| Vendor | Product | Versions |
|---|---|---|
Meta | Tacquito | affected 0 - < 07b49d1358e6ec0b5aa482fcd284f509191119e2 |
References
https://www.facebook.com/security/advisories/cve-2024-49400
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now