A vulnerability was found in Byzoro Smart S200 Management Platform up to 20240507. It has been rated as critical. This issue affects some unknown processing of the file /useratte/userattestation.php. The manipulation of the argument web_img leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-264437 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: VulDB
Published: 2024-05-15T19:31:03.731Z
Updated: 2024-08-01T20:55:10.226Z
Reserved: 2024-05-15T11:04:02.639Z
Link: CVE-2024-4904
Vulnrichment
Updated: 2024-08-01T20:55:10.226Z
NVD
Status : Awaiting Analysis
Published: 2024-05-15T20:15:13.750
Modified: 2024-06-04T19:20:52.380
Link: CVE-2024-4904
Redhat
No data.