Lucene search
HistoryMar 21, 2024 - 11:15 p.m.
CVE-2024-28171
path traversal
directory write
file overwrite
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0
Percentile
10.5%
It is possible to perform a path traversal attack and write outside of the intended directory. If a file name is specified that already exists on the file system, then the original file will be overwritten.
Related
vulnrichment
vulnrichment
CVE-2024-28171 Delta Electronics DIAEnergie Path traversal
2024-03-21 22:19:36
cvelist
cvelist
CVE-2024-28171 Delta Electronics DIAEnergie Path traversal
2024-03-21 22:19:36
cve
cve
CVE-2024-28171
2024-03-21 23:15:10
ics
ics
Delta Electronics DIAEnergie
2024-03-14 12:00:00
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0
Percentile
10.5%
Related for NVD:CVE-2024-28171