CVE-2024-41938

NVD Published Date: August 13, 2024 at 08:15 AM
NVD Last Modified: August 14, 2024 at 06:08 PM
Download Patch
Vulnerability ID
CVE-2024-41938
Severity
LOW
Severity Score
3.8
Summary
A vulnerability has been identified in SINEC NMS (All versions < V3.0). The importCertificate function of the SINEC NMS Control web application contains a path traversal vulnerability. This could allow an authenticated attacker it to delete arbitrary certificate files on the drive SINEC NMS is installed on.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L
CWE ID
CWE-22

Recent Publish

CVE-2024-41905

CVE-2024-41683

CVE-2024-41941

CVE-2024-37935

CVE-2024-38688

CVE-2024-39651

See SecOps Solution
in action

Schedule Demo