Lucene search
INCIBECVELIST:CVE-2024-0315HistoryJan 15, 2024 - 4:02 p.m.
CVE-2024-0315 Remote file inclusion vulnerability in FireEye Central Management
2024-01-1516:02:52
CWE-98
INCIBE
www.cve.org
cve-2024-0315
fireeye
central management
version 9.1.1.956704
vulnerability
attacker
upload
malicious
pdf
report creation
6.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
0.001 Low
EPSS
Percentile
29.4%
Remote file inclusion vulnerability in FireEye Central Management affecting version 9.1.1.956704. This vulnerability allows an attacker to upload a malicious PDF file to the system during the report creation process.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "FireEye Central Management",
"vendor": "FireEye ",
"versions": [
{
"status": "affected",
"version": "9.1.1.956704"
}
]
}
]Related
cve
cve
CVE-2024-0315
2024-01-15 16:15:13
prion
prion
Remote file inclusion
2024-01-15 16:15:00
nvd
nvd
CVE-2024-0315
2024-01-15 16:15:13
6.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
0.001 Low
EPSS
Percentile
29.4%
Related for CVELIST:CVE-2024-0315