Опубликовано: 06 мая 2025
Источник: github
Github: Не прошло ревью
CVSS4: 9.3
CVSS3: 9.8
Описание
Unrestricted file upload in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to upload any file within the server, even a malicious file to obtain a Remote Code Execution (RCE).
Unrestricted file upload in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to upload any file within the server, even a malicious file to obtain a Remote Code Execution (RCE).
EPSS
Процентиль: 78%
0.01155
Низкий
9.3 Critical
CVSS4
9.8 Critical
CVSS3
CVE ID
Дефекты
CWE-434
CWE-89
Связанные уязвимости
CVSS3: 9.8
nvd
9 месяцев назад
Unrestricted file upload in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to upload any file within the server, even a malicious file to obtain a Remote Code Execution (RCE).
EPSS
Процентиль: 78%
0.01155
Низкий
9.3 Critical
CVSS4
9.8 Critical
CVSS3
CVE ID
Дефекты
CWE-434
CWE-89