A CWE-434 “Unrestricted Upload of File with Dangerous Type” vulnerability in the “file_configuration” functionality of the web application allows a remote authenticated attacker to upload any arbitrary type of file into the device. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Nozomi
Published: 2024-03-05T11:29:58.832Z
Updated: 2024-08-22T18:33:06.637Z
Reserved: 2023-10-09T08:26:54.316Z
Link: CVE-2023-45595
Vulnrichment
Updated: 2024-08-02T20:21:16.648Z
NVD
Status : Awaiting Analysis
Published: 2024-03-05T12:15:46.717
Modified: 2024-03-05T13:41:01.900
Link: CVE-2023-45595
Redhat
No data.