Advertisement
VU
CRITICAL
Vulnerabilities
CVE-2024-34351: ChromaDB RCE via MinJinja Template Injection
A critical RCE vulnerability in ChromaDB (CVE-2024-34351) allows unauthenticated attackers to hijack servers via malicious metadata filters. Patch to 0.5.1 now.
Runtime Rebel Intel
3 min read·May 20, 2026
HIGH
Threat Intel
UAT-10608 Exploits Next.js CVE-2024-34351 via React2Shell Script
Threat actor UAT-10608 is leveraging an automated script to exploit a Next.js SSRF flaw, exfiltrating credentials and environment secrets from web applications.
Runtime Rebel Intel
3 min read·Apr 6, 2026
VU
CRITICAL
Vulnerabilities
Chinese APTs Exploit CVE-2024-34351 in TeamT5 ThreatSonar
Taiwanese security firm TeamT5 confirms that a critical command injection flaw in ThreatSonar Anti-Ransomware has likely been exploited by Chinese APT groups.
Runtime Rebel Intel
4 min read·Feb 24, 2026