ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files. Remote attackers with administrator privileges on the product platform can upload malicious files, which can be used to execute arbitrary system command on the server.
Metrics
Affected Vendors & Products
References
History
Mon, 12 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Teamt5
Teamt5 threatsonar Anti-ransomware |
|
CPEs | cpe:2.3:a:teamt5:threatsonar_anti-ransomware:*:*:*:*:*:*:*:* | |
Vendors & Products |
Teamt5
Teamt5 threatsonar Anti-ransomware |
|
Metrics |
ssvc
|
Mon, 12 Aug 2024 03:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files. Remote attackers with administrator privileges on the product platform can upload malicious files, which can be used to execute arbitrary system command on the server. | |
Title | TeamT5 ThreatSonar Anti-Ransomware - Arbitrary File Upload | |
Weaknesses | CWE-434 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: twcert
Published: 2024-08-12T03:00:55.680Z
Updated: 2024-08-12T13:55:35.017Z
Reserved: 2024-08-12T02:14:36.512Z
Link: CVE-2024-7694
Vulnrichment
Updated: 2024-08-12T13:55:29.946Z
NVD
Status : Analyzed
Published: 2024-08-12T13:38:58.553
Modified: 2024-09-06T17:24:42.573
Link: CVE-2024-7694
Redhat
No data.