CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2024/06/25 9:15 p.m.•7 views

CVE-2024-35526

An issue in Daemon PTY Limited FarCry Core framework before 7.2.14 allows attackers to access sensitive information in the /facade directory...

5.9CVSS0.00023EPSS

Exploits0References1

Cvelist•added 2024/06/25 12:0 a.m.•15 views

CVE-2024-35526

An issue in Daemon PTY Limited FarCry Core framework before 7.2.14 allows attackers to access sensitive information in the /facade directory...

0.00023EPSS

Exploits0References1

CVE•added 2024/06/25 12:0 a.m.•43 views

CVE-2024-35527

FarCry Core framework (Daemon PTY Limited) vulnerable to arbitrary code execution via fileupload/upload.cfm in versions prior to 7.2.14. The flaw allows uploading a crafted .cfm file to achieve remote code execution. Impact is asserted as high (C, I, A) with CVSS v3.1 base score 9.8. Affected pro...

9.8CVSS7.5AI score0.00127EPSS

Exploits0References1

CVE•added 2024/06/25 12:0 a.m.•43 views

CVE-2024-35526

The reports across multiple sources identify a vulnerability in the FarCry Core framework from Daemon PTY Limited, affecting versions prior to 7.2.14. The issue permits access to sensitive information stored in the "/facade" directory. Root cause is implied to be improper access control exposing ...

5.9CVSS6.2AI score0.00023EPSS

Exploits0References1