cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score CVE-2024-41151,https://securityvulnerability.io/vulnerability/CVE-2024-41151,Authorized Attackers can Exploit Deserialization of Untrusted Data Vulnerability in Apache HertzBeat Before 1.6.1,"Deserialization of Untrusted Data vulnerability in Apache HertzBeat. This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat: before 1.6.1. Users are recommended to upgrade to version 1.6.1, which fixes the issue.",Apache,Apache Hertzbeat,,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-11-18T08:45:49.288Z,0 CVE-2024-45791,https://securityvulnerability.io/vulnerability/CVE-2024-45791,Unauthorized Access to Sensitive Information in Apache HertzBeat Before 1.6.1,"Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache HertzBeat. This issue affects Apache HertzBeat: before 1.6.1. Users are recommended to upgrade to version 1.6.1, which fixes the issue.",Apache,Apache Hertzbeat,,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-11-18T08:45:23.459Z,0 CVE-2024-45505,https://securityvulnerability.io/vulnerability/CVE-2024-45505,Command Injection Vulnerability in Apache HertzBeat (incubating),"Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache HertzBeat (incubating). This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat (incubating): before 1.6.1. Users are recommended to upgrade to version 1.6.1, which fixes the issue.",Apache,Apache Hertzbeat,,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-11-18T08:44:46.165Z,0 CVE-2024-42323,https://securityvulnerability.io/vulnerability/CVE-2024-42323,SnakeYaml Deserialization RCE Vulnerability in Apache HertzBeat (incubating),"SnakeYaml Deser Load Malicious xml rce vulnerability in Apache HertzBeat (incubating).  This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat (incubating): before 1.6.0. Users are recommended to upgrade to version 1.6.0, which fixes the issue.",Apache,Apache Hertzbeat,,,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-09-21T09:30:15.295Z,0