Fceux · Fceux · CVE-2024-32258
**Name of the Vulnerable Software and Affected Versions**
fceux version 2.7.0
**Description**
The network server of fceux has a path traversal vulnerability, allowing attackers to overwrite any files on the server without authentication by using a fake ROM.
**Recommendations**
For fceux version 2.7.0, as a temporary workaround, consider restricting access to the network server until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.