CVE-2024-56086 - CERT CVE
ID CVE-2024-56086
Sažetak An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads in Report Templates. These are executed when the backup process is initiated, leading to Remote Code Execution.
Reference
CVSS
Base: 7.1
Impact: 5.9
Exploitability:1.2
Pristup
VektorSloženostAutentikacija
ADJACENT_NETWORK HIGH LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Zadnje važnije ažuriranje 16-12-2024 - 16:15
Objavljeno 16-12-2024 - 06:15