CVE-2024-22093

The issue is related to an authenticated remote command injection in an undisclosed iControl REST endpoint on multi-bladed systems when running in appliance mode. A successful exploit can allow the attacker to cross a security boundary. The affected software is iControl, but the specific versions are not disclosed, except that software versions which have reached End of Technical Support (EoTS) are not evaluated. More information about the exploit can be found at https://t.co/QkeOfBPhqh or https://t.co/tIPZDtnkkz. #iControl #remoteCommandInjection #cybersecurityawareness #infosec #multiBladedSystems #applianceMode #cybersecurity