2 matches found
CVE-2024-8330
CVE-2024-8330 affects Gether Technology’s 6SHR System. Multiple connected sources (NVD, CVE listing, CNNVD, PT- security) confirm an improper validation of uploaded file types, enabling remote attackers with regular privileges to upload web shell scripts and execute arbitrary system commands on t...
CVE-2024-8329
CVE-2024-8329 affects Gether Technology’s 6SHR System. The vulnerability is an SQL injection caused by improper validation of the page parameter, exploitable remotely over a network with low privileges and no user interaction. Impact is read/modify/delete of database contents (high confidentialit...