GCVE - cpe:2.3:a:openeuler:gala-gopher:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:openeuler:gala-gopher:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Openeuler (`b9dd928a-bf24-59f3-b24a-02f5732eb8f2`)
Product	Gala Gopher (`a694a8ac-78bb-5f12-84ca-53f0abfd9a03`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-24890`	vulnerable	2026-06-03 14:55:06.024211	Command injection in ioprobe of gala-gopher HIGH (7.8) Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in openEuler gala-gopher on Linux allows Command Injection. This vulnerability is associated with program files https://gitee.Com/openeuler/gala-gopher/blob/master/src/probes/extends/ebpf.Probe/src/ioprobe/ioprobe.C. This issue affects gala-gopher: through 1.0.2. Published: 2024-03-25T07:09:25.879Z Updated: 2024-08-12T18:44:27.814Z Open on db.gcve.eu Reference links https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1278 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1279 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1277 https://gitee.com/src-openeuler/gala-gopher/pulls/81 https://gitee.com/src-openeuler/gala-gopher/pulls/85	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.