Path traversal vulnerability exists in Machine Automation Controller NJ Series and Machine Automation Controller NX Series. An arbitrary file in the affected product may be accessed or arbitrary code may be executed by processing a specially crafted request sent from a remote attacker with an administrative privilege. As for the details of the affected product names/versions, see the information provided by the vendor under [References] section.
Metrics
Affected Vendors & Products
References
History
Fri, 16 Aug 2024 21:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-22 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2024-03-12T07:55:48.301Z
Updated: 2024-08-16T19:50:12.016Z
Reserved: 2024-02-20T08:22:05.133Z
Link: CVE-2024-27121
Vulnrichment
Updated: 2024-08-02T00:27:59.260Z
NVD
Status : Awaiting Analysis
Published: 2024-03-12T08:15:45.413
Modified: 2024-08-16T20:35:07.017
Link: CVE-2024-27121
Redhat
No data.