exploitDog

CVE-2024-56084

Опубликовано: 16 дек. 2024

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

An issue was discovered in Logpoint UniversalNormalizer before 5.7.0. Authenticated users can inject payloads while creating Universal Normalizer. These are executed, leading to Remote Code Execution.

Ссылки

https://servicedesk.logpoint.com/hc/en-us/articles/22137632418845-Remote-Code-Execution-while-creating-Universal-Normalizer
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:logpoint:universal_normalizer:*:*:*:*:*:*:*:*

Версия до 5.7.0 (исключая)

EPSS

Процентиль: 83%

0.01967

Низкий

7.1 High

CVSS3

Дефекты

CWE-77

CWE-77

Связанные уязвимости

GHSA-3jgh-cx2h-h5xp

CVSS3: 7.1

github

около 1 года назад

An issue was discovered in Logpoint UniversalNormalizer before 5.7.0. Authenticated users can inject payloads while creating Universal Normalizer. These are executed, leading to Remote Code Execution.

EPSS

Процентиль: 83%

0.01967

Низкий

7.1 High

CVSS3

Дефекты

CWE-77

CWE-77