ГлавнаяУязвимости → CVE-2024-12700
8.8высокая

CVE-2024-12700

Описание

There is an unrestricted file upload vulnerability where it is possible for an authenticated user (low privileged) to upload an jsp shell and execute code with the privileges of user running the web server.

CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://aggregate.digital/downloads.htmlhttps://www.cisa.gov/news-events/ics-advisories/icsa-24-354-05