How severe is CVE-2024-33615?

CVE-2024-33615 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-33615

8.8HIGH

A specially crafted Zip file containing path traversal characters can be imported to the CyberPower PowerPanel server, which allows file writing to the server outside the intended scope, and coul

Publicado: 5/15/2024Actualizado: 11/21/2024

Descripción

A specially crafted Zip file containing path traversal characters can be imported to the CyberPower PowerPanel server, which allows file writing to the server outside the intended scope, and could allow an attacker to achieve remote code execution.

Análisis IAImpulsado por IA

Referencias

https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01
https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads
https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01
https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads