{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-21T03:23:22.090","vulnerabilities":[{"cve":{"id":"CVE-2024-24890","sourceIdentifier":"securities@openeuler.org","published":"2024-03-25T07:15:49.903","lastModified":"2026-06-17T07:15:10.703","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in openEuler gala-gopher on Linux allows Command Injection. This vulnerability is associated with program files https://gitee.Com/openeuler/gala-gopher/blob/master/src/probes/extends/ebpf.Probe/src/ioprobe/ioprobe.C.\n\nThis issue affects gala-gopher: through 1.0.2.\n\n"},{"lang":"es","value":"La neutralización inadecuada de elementos especiales utilizados en una vulnerabilidad de comando del sistema operativo ('inyección de comando del sistema operativo') en openEuler gala-gopher en Linux permite la inyección de comando. Esta vulnerabilidad está asociada con archivos de programa https://gitee.Com/openeuler/gala-gopher/blob/master/src/probes/extends/ebpf.Probe/src/ioprobe/ioprobe.C. Este problema afecta a gala-gopher: hasta 1.0.2."}],"affected":[{"source":"securities@openeuler.org","affectedData":[{"vendor":"openEuler","product":"gala-gopher","defaultStatus":"unaffected","collectionURL":"https://gitee.com/src-openeuler","packageName":"gala-gopher","platforms":["Linux"],"programFiles":["https://gitee.com/openeuler/gala-gopher/blob/master/src/probes/extends/ebpf.probe/src/ioprobe/ioprobe.c"],"repo":"https://gitee.com/src-openeuler/gala-gopher","versions":[{"version":"0","lessThanOrEqual":"1.0.2","versionType":"git","status":"affected","changes":[{"at":"7389bb2057607dede5f0c9ba397add9a5c162850","status":"unaffected"},{"at":"0ca5c078c3b1af40add007cffbdc0bd539a59fa0","status":"unaffected"},{"at":"60c6826aa5f5e7e9598c2d5cb97663b0fabc5f49","status":"unaffected"}]}]}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","affectedData":[{"vendor":"openeuler","product":"gala-gopher","defaultStatus":"unaffected","cpes":["cpe:2.3:a:openeuler:gala-gopher:*:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThanOrEqual":"1.0.2","versionType":"git","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"securities@openeuler.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-04-01T19:37:31.069507Z","id":"CVE-2024-24890","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"securities@openeuler.org","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https://gitee.com/src-openeuler/gala-gopher/pulls/81","source":"securities@openeuler.org"},{"url":"https://gitee.com/src-openeuler/gala-gopher/pulls/82","source":"securities@openeuler.org"},{"url":"https://gitee.com/src-openeuler/gala-gopher/pulls/85","source":"securities@openeuler.org"},{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1277","source":"securities@openeuler.org"},{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1278","source":"securities@openeuler.org"},{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1279","source":"securities@openeuler.org"},{"url":"https://gitee.com/src-openeuler/gala-gopher/pulls/81","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://gitee.com/src-openeuler/gala-gopher/pulls/82","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://gitee.com/src-openeuler/gala-gopher/pulls/85","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1277","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1278","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1279","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}