CVE-2018-18836

An issue was discovered in Netdata 1.10.0. JSON injection exists via the api/v1/data tqx parameter because of web_client_api_request_v1_data in web/api/web_api_v1.c.
Configurations

Configuration 1 (hide)

cpe:2.3:a:my-netdata:netdata:1.10.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-06-18 16:15

Updated : 2024-02-04 20:20


NVD link : CVE-2018-18836

Mitre link : CVE-2018-18836

CVE.ORG link : CVE-2018-18836


JSON object : View

Products Affected

my-netdata

  • netdata
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')