Docmosis · Docmosis Tornado · CVE-2024-42733
**Name of the Vulnerable Software and Affected Versions**
Docmosis Tornado versions 2.9.7 and earlier
**Description**
The issue allows a remote attacker to execute arbitrary code via a crafted script to the UNC path input.
**Recommendations**
For versions 2.9.7 and earlier, update to a version later than 2.9.7 to resolve the issue.