← Back to CVE List

CVE-2024-21508

Published: 2024-04-11T05:15Z
Last Modified: 2024-11-21T08:54Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Versions of the package mysql2 before 3.9.4 are vulnerable to Remote Code Execution (RCE) via the readCodeFor function due to improper validation of the supportBigNumbers and bigNumberStrings values. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt