How severe is CVE-2024-33615?

CVE-2024-33615 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-33615

8.8HIGH

A specially crafted Zip file containing path traversal characters can be imported to the CyberPower PowerPanel server, which allows file writing to the server outside the intended scope, and coul

Опубликовано: 5/15/2024Обновлено: 11/21/2024

Описание

A specially crafted Zip file containing path traversal characters can be imported to the CyberPower PowerPanel server, which allows file writing to the server outside the intended scope, and could allow an attacker to achieve remote code execution.

ИИ-АнализНа базе ИИ

Ссылки

https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01
https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads
https://www.cisa.gov/news-events/ics-advisories/icsa-24-123-01
https://www.cyberpower.com/global/en/product/sku/powerpanel_business_for_windows#downloads