An arbitrary file upload vulnerability in the uploadAudio method of inxedu v2024.4 allows attackers to execute arbitrary code via uploading a crafted .jsp file.
Metrics
Affected Vendors & Products
References
History
Tue, 20 Aug 2024 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-434 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-20T14:27:25.559Z
Reserved:
Link: CVE-2024-35079
Vulnrichment
Updated: 2024-08-02T03:07:46.489Z
NVD
Status : Awaiting Analysis
Published: 2024-05-23T19:16:01.357
Modified: 2024-08-20T15:35:13.923
Link: CVE-2024-35079
Redhat
No data.