CVE-2024-2947 | Cockpit sosreport command injection

March 28, 2024

A vulnerability was found in Cockpit. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component sosreport Handler. The manipulation leads to command injection.

This vulnerability is known as CVE-2024-2947. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.VulDB Recent EntriesRead More