CVE-2024-42167 | FIWARE Keyrock up to 8.4 saml2.js generate_app_certificates os command injection

CVE-2024-42167 | FIWARE Keyrock up to 8.4 saml2.js generate_app_certificates os command injection

A vulnerability classified as critical has been found in FIWARE Keyrock up to 8.4. Affected is the function generate_app_certificates of the file controllers/saml2/saml2.js. The manipulation leads to os command injection. This vulnerability is traded as CVE-2024-42167. It is possible to launch the attack remotely. There is no exploit available.