CVE-2024-48394

A Time-of-Check to Time-of-Use TOCTOU vulnerability has been identified in the driver of the NDD Print solution, which could allow an unprivileged user to exploit this flaw and gain SYSTEM-level access on the device. The vulnerability affects version 5.24.3 and before of the software...

CVE-2024-48394

The CVE-2024-48394 entry concerns the NDD Print driver with a TOCTOU vulnerability in versions prior to 5.24.3. An unprivileged user could exploit the flaw to gain SYSTEM-level access on the device. Affected component: NDD Print driver (driver-level TOCTOU). Impact is described as SYSTEM-level co...

CVE-2024-48394

A Time-of-Check to Time-of-Use TOCTOU vulnerability has been identified in the driver of the NDD Print solution, which could allow an unprivileged user to exploit this flaw and gain SYSTEM-level access on the device. The vulnerability affects version 5.24.3 and before of the software...

PT-2020-6425 · Civicrm · Civicrm

Name of the Vulnerable Software and Affected Versions: CiviCRM versions 5.22.x through 5.24.x before 5.24.3 CiviCRM versions prior to 5.21.3 Description: The issue in CiviCRM is related to the possibility of uploading and executing PHAR archives. Exploitation of this issue may allow a remote...