CVE-2024-46507

Name of the Vulnerable Software and Affected Versions: Yeti Platform (affected versions not specified)

Description: The issue is related to insufficient input validation, which can allow a remote attacker to execute arbitrary code or implement a Server Side Template Injection (SSTI) attack. No specific technical details, such as API endpoints or vulnerable parameters, are provided in the descriptions. The estimated number of potentially affected devices worldwide and details about real-world incidents where this issue was exploited are not mentioned.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.