VDB
CVE-2024-47881
CVE-2024-47881
PUBLISHED
CVSS 8.100000381469727 HIGH
OpenRefine's SQLite integration allows filesystem access, remote code execution (RCE)
EPSS 0.29% · 53.0th percentile
Risk Scores
CVSS 3.1
8.100000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS Score
0.29%
53.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| openrefine | openrefine | 0, 0 |
| Maven | org.openrefine:database | 3.4-beta |
| openrefine | openrefine | 3.4 |
| OpenRefine | OpenRefine | >= 3.4-beta, < 3.8.3 |
Exploit Intelligence
Timeline
- Jan 21, 1970 Security Advisory
- Oct 24, 2024 CVE Published
- Oct 24, 2024 Coalition ESS Score
- Oct 25, 2024 EPSS Score
- Oct 25, 2024 Coalition ESS Score
- Oct 28, 2024 Coalition ESS Score
- Nov 12, 2024 EPSS Score
- Dec 2, 2024 EPSS Score
- Dec 20, 2024 EPSS Score
- Jan 7, 2025 EPSS Score
- Jan 26, 2025 EPSS Score
- Feb 13, 2025 EPSS Score