Lucene search

Ubuntu.comUB:CVE-2024-37821

HistoryJun 18, 2024 - 12:00 a.m.

CVE-2024-37821

2024-06-1800:00:00

ubuntu.com

arbitrary file upload

dolibarr erp crm

cve-2024-37821

sql file

unix

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

An arbitrary file upload vulnerability in the Upload Template function of
Dolibarr ERP CRM up to v19.0.1 allows attackers to execute arbitrary code
via uploading a crafted .SQL file.

References

dolibarr.com

github.com/alexbsec/CVEs/blob/master/2024/CVE-2024-37821.md

launchpad.net/bugs/cve/CVE-2024-37821

nvd.nist.gov/vuln/detail/CVE-2024-37821

security-tracker.debian.org/tracker/CVE-2024-37821

www.cve.org/CVERecord?id=CVE-2024-37821