CVE-2024-40521
CVE-2024-40521
Título es
CVE-2024-40521
Vie, 12/07/2024 – 16:15
Tipo
NVD-CWE-noinfo
Gravedad 2.0 Txt
Pendiente de análisis
CPE
cpe:2.3:a:seacms:seacms:12.9:*:*:*:*:*:*:*————
Título en
CVE-2024-40521
Descripción en
SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is due to the fact that although admin_template.php imposes certain restrictions on the edited file, attackers can still bypass the restrictions and write code in some way, allowing authenticated attackers to exploit the vulnerability to execute arbitrary commands and gain system privileges.
12/07/2024
12/07/2024
Fabricante
seacms
Producto
seacms
Vector CVSS:3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Gravedad 3.1 (CVSS 3.1 Base Score)
8.80
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
HIGH
Referencias
Enviar en el boletín
Off
