exploitDog

GHSA-w3vc-hpm9-2h9q

Опубликовано: 28 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file.

An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file.

Ссылки

EPSS

Процентиль: 24%

0.00083

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2024-57338

CVSS3: 6.5

nvd

9 месяцев назад

An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file.

EPSS

Процентиль: 24%

0.00083

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-77