CVE-2024-13981

🗓️ 27 Aug 2025 21:25:29Reported by VulnCheckType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 10 Views

CVE-2024-13981 in LiveBOS Server allows unauthenticated file upload via path traversal, enabling code execution.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-13981	29 Aug 202521:02	–	circl
CNNVD	Apex LiveBOS 安全漏洞	27 Aug 202500:00	–	cnnvd
Cvelist	CVE-2024-13981 LiveBos UploadFile.do Arbitrary File Upload	27 Aug 202521:25	–	cvelist
EUVD	EUVD-2024-54923	3 Oct 202520:07	–	euvd
NVD	CVE-2024-13981	27 Aug 202522:15	–	nvd
Positive Technologies	PT-2025-34940 · Livebos · Livebos	27 Aug 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-13981	30 Aug 202518:16	–	redhatcve
VulnCheck KEV	VulnCheck KEV: CVE-2024-13981	23 Aug 202400:00	–	vulncheck_kev
Vulnrichment	CVE-2024-13981 LiveBos UploadFile.do Arbitrary File Upload	27 Aug 202521:25	–	vulnrichment

Vulners

Node

fujian_apex_software livebosRange0–pre-august 2024

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "UploadFile.do;.js.jsp"
    ],
    "product": "LiveBOS",
    "vendor": "Fujian Apex Software Co. Ltd.",
    "versions": [
      {
        "lessThanOrEqual": "pre-August 2024 builds",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
blog	www.blog.csdn.net/weixin_53009585/article/details/140853891
apexsoft	www.apexsoft.com.cn/platform/index.html
axsec	www.axsec.blog.csdn.net/article/details/140847466
github	www.github.com/folio2008/POC_wy876/blob/main/LiveBOS/%E7%81%B5%E5%8A%A8%E4%B8%9A%E5%8A%A1%E6%9E%B6%E6%9E%84%E5%B9%B3%E5%8F%B0%28LiveBOS%29%E7%B3%BB%E7%BB%9FUploadFile.do%E6%8E%A5%E5%8F%A3%E6%96%87%E4%BB%B6%E4%B8%8A%E4%BC%A0%E6%BC%8F%E6%B4%9E%28XVE-2023-21708%29.md
blog	www.blog.csdn.net/jingke666/article/details/140855251
vulncheck	www.vulncheck.com/advisories/livebos-uploadfile-arbitrary-file-upload
cn-sec	www.cn-sec.com/archives/3041179.html

26 May 2026 11:51Current

7.8High risk

Vulners AI Score7.8

CVSS 410

EPSS0.01812

SSVC

In Wild