CVE-2024-8330

NVD Published Date: August 30, 2024 at 03:15 AM
NVD Last Modified: September 05, 2024 at 01:41 PM
Download Patch
Vulnerability ID
CVE-2024-8330
Severity
HIGH
Severity Score
8.8
Summary
6SHR system from Gether Technology does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload web shell scripts and use them to execute arbitrary system commands on the server.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-434

Recent Publish

CVE-2024-8329

CVE-2024-45491

CVE-2024-8327

CVE-2024-8328

CVE-2024-45492

CVE-2024-45490

See SecOps Solution
in action

Schedule Demo