CVE-2024-7694

TeamT5 ThreatSonar Anti-Ransomware - Arbitrary File Upload

CVSS 7.2 HIGHEPSS 1.8%● KEVCWE-434

In short

TeamT5's ThreatSonar Anti-Ransomware fails to properly check uploaded files, allowing administrators to upload malicious files that execute harmful commands on the server.

Technical detail

The application lacks adequate file content validation on upload endpoints. An authenticated attacker with administrator privileges can bypass file restrictions to upload executable payloads, leading to remote code execution (RCE) on the host system.

Summary generated and translated by AI from the official description.

ThreatSonar Anti-Ransomware from TeamT5 does not properly validate the content of uploaded files. Remote attackers with administrator privileges on the product platform can upload malicious files, which can be used to execute arbitrary system command on the server.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

TeamT5 · ThreatSonar Anti-Ransomware

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-7694 https://www.twcert.org.tw/en/cp-139-8000-e5a5c-2.html https://www.twcert.org.tw/tw/cp-132-7998-d76dd-1.html