{"id":"CVE-2024-35304","details":"System command injection through Netflow function due to improper input validation, allowing attackers to execute arbitrary system commands. This issue affects Pandora FMS: from 700 through \u003c777.","modified":"2026-07-09T10:11:56.055069Z","published":"2024-06-10T15:15:51.430Z","references":[{"type":"ADVISORY","url":"https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/pandorafms/pandorafms","events":[{"introduced":"0"},{"fixed":"3c409813f14722c2290c7854f555599d9720d4d4"}],"database_specific":{"source":"CPE_RANGE","extracted_events":[{"introduced":"700"},{"fixed":"777"}],"cpe":"cpe:2.3:a:artica:pandora_fms:*:*:*:*:*:*:*:*"}}],"versions":["tools","6.0","5.1","5.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-35304.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}