CVE-2024-57968
CVE-2024-57968
In short
Advantive VeraCore versions before 2024.4.2.1 allow logged-in users to upload files to any folder on the server, including those visible to other users on the web. This means attackers with access can place malicious files where others can find and potentially execute them.
Technical detail
A path traversal vulnerability in upload.aspx permits authenticated users to specify arbitrary upload directories during file submission. An attacker with valid credentials can upload files outside intended storage locations, potentially reaching web-accessible directories to execute arbitrary code or distribute malware to other users.
Summary generated and translated by AI from the official description.
Advantive VeraCore before 2024.4.2.1 allows remote authenticated users to upload files to unintended folders (e.g., ones that are accessible during web browsing by other users). upload.aspx can be used for this.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected products
Advantive · VeraCoreWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://advantive.my.site.com/support/s/article/VeraCore-Release-Notes-2024-4-2-1https://intezer.com/blog/research/xe-group-exploiting-zero-days/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-57968https://www.solissecurity.com/en-us/insights/xe-group-from-credit-card-skimming-to-exploiting-zero-days/