Описание
A vulnerability was found in URVE Web Manager. It has been rated as critical. This issue affects some unknown processing of the file _internal/uploader.php. The manipulation leads to unrestricted upload. The attack needs to be approached within the local network. The exploit has been disclosed to the public and may be used.
Ссылки
- ExploitThird Party Advisory
- Third Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:eveo:urve_web_manager:-:*:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00225
Низкий
8 High
CVSS3
Дефекты
CWE-434
CWE-434
Связанные уязвимости
CVSS3: 8
github
больше 3 лет назад
A vulnerability was found in URVE Web Manager. It has been rated as critical. This issue affects some unknown processing of the file _internal/uploader.php. The manipulation leads to unrestricted upload. The attack needs to be approached within the local network. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 45%
0.00225
Низкий
8 High
CVSS3
Дефекты
CWE-434
CWE-434