CVE-2024-23055

Name of the Vulnerable Software and Affected Versions Plone Docker Official Image version 5.2.13 (5221)

Description The issue allows for remote code execution via improper validation of input by the HOST headers. This can be exploited by an attacker to execute arbitrary code by injecting code into the HOST header.

Recommendations For Plone Docker Official Image version 5.2.13 (5221), as a temporary workaround, consider restricting access to the HOST headers until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.