Vulnerabilities

Report: Update: CVE-2026-34612 - Kestra: Remote Code Execution via SQL Injection

2026-04-04 0 views admin

CVE ID :CVE-2026-34612 Published : April 3, 2026, 11:17 p.m. | 39 minutes ago Description :Kestra is an open-source, event-driven orchestration platform. Prior to version 1.3.7, Kestra (default docker-compose deployment) contains a SQL Injection vulnerability that leads to Remote Code Execution (RCE) in the following endpoint

CVE Details

CVE ID

CVE-2026-34612

Published

April 3, 2026

Affected Product: docker

Impact: SQL Injection

🏷️ Tags

reportupdate34612kestraremoteexecutioninjectionpublishedcvesql injection

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Update: CVE-2026-34612 - Kestra: Remote Code Execution via SQL Injection

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: Breaking: CVE-2026-34770 - Electron: Use-after-free in PowerMonitor on Windows and macOS

Report: Essential Guide: CVE-2026-34771 - Electron: Use-after-free in WebContents fullscreen, pointer-lock, and keyboard-l...

Report: CVE-2026-34768 - Electron: Unquoted executable path in app.setLoginItemSettings on Windows

Report: CVE-2026-34767 - Electron: HTTP Response Header Injection in custom protocol handlers and webRequest - Guide

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting