Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/02/17 12:0 a.m.7 views

Automated Logic WebCTRL Premium Server Unrestricted Upload of File with Dangerous Type (CVE-2024-8525)

CWE-434 Unrestricted Upload of File with Dangerous Type vulnerability exists which could allow an unauthenticated user to upload files of dangerous types without restrictions, leading to remote command execution. This plugin only works with Tenable.ot. Please visit...

10CVSS5.5AI score0.0143EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/02/17 12:0 a.m.17 views

Automated Logic WebCTRL Premium Server Unrestricted Upload of File with Dangerous Type (CVE-2024-8525)

CWE-434 Unrestricted Upload of File with Dangerous Type vulnerability exists which could allow an unauthenticated user to upload files of dangerous types without restrictions, leading to remote command execution. This plugin only works with Tenable.ot. Please visit...

10CVSS5.5AI score0.0143EPSS
Exploits0References3
CVE
CVE
added 2024/11/21 3:32 p.m.65 views

CVE-2024-8525

CVE-2024-8525 affects Automated Logic WebCTRL 7.0 (Premium Server). The issue is an unrestricted upload of a file with a dangerous type that an unauthenticated attacker can exploit via a crafted HTTP POST to achieve remote command execution and upload of a malicious file. Multiple connected sourc...

10CVSS6.9AI score0.0143EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/21 3:32 p.m.16 views

CVE-2024-8525 Automated Logic WebCTRL and Carrier i-Vu Unrestricted File Upload

An unrestricted upload of file with dangerous type in Automated Logic WebCTRL 7.0 could allow an unauthenticated user to perform remote command execution via a crafted HTTP POST request which could lead to uploading a malicious file...

10CVSS7.2AI score0.0143EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/21 3:32 p.m.18 views

CVE-2024-8525 Automated Logic WebCTRL and Carrier i-Vu Unrestricted File Upload

An unrestricted upload of file with dangerous type in Automated Logic WebCTRL 7.0 could allow an unauthenticated user to perform remote command execution via a crafted HTTP POST request which could lead to uploading a malicious file...

10CVSS0.0143EPSS
Exploits0References2
Circl
Circl
added 2024/11/21 11:0 a.m.7 views

CVE-2024-8525

creationtimestamp| type| source ---|---|--- 2024-11-21 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-326-01 2024-11-21 15:34:18+00:00| seen| https://infosec.exchange/users/cve/statuses/113521672720175626...

10CVSS6.8AI score0.0143EPSS
Exploits0References2
Rows per page
Query Builder