exploitDog

CVE-2024-31841

Опубликовано: 19 апр. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue was discovered in Italtel Embrace 1.6.4. The web server fails to sanitize input data, allowing remote unauthenticated attackers to read arbitrary files on the filesystem.

Ссылки

https://www.gruppotim.it/it/footer/red-team.html
Exploit
Third Party Advisory
https://www.gruppotim.it/it/footer/red-team.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:italtel:embrace:1.6.4:*:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00303

Низкий

7.5 High

CVSS3

Дефекты

CWE-20

Связанные уязвимости

GHSA-v4c8-xmpc-f835

CVSS3: 7.5

github

почти 2 года назад

An issue was discovered in Italtel Embrace 1.6.4. The web server fails to sanitize input data, allowing remote unauthenticated attackers to read arbitrary files on the filesystem.

EPSS

Процентиль: 53%

0.00303

Низкий

7.5 High

CVSS3

Дефекты

CWE-20