In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can supply a malicious configuration file by utilizing a Zip Slip vulnerability in the unpacking routine to achieve remote code execution.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2024-02-01T23:10:58.968Z
Updated: 2024-08-01T22:27:36.314Z
Reserved: 2024-01-05T21:39:05.402Z
Link: CVE-2024-21852
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2024-02-01T23:15:10.730
Modified: 2024-02-07T17:15:05.653
Link: CVE-2024-21852
Redhat
No data.