CVE-2023-24836

Name of the Vulnerable Software and Affected Versions SUNNET CTMS (affected versions not specified)

Description The issue is related to a path traversal vulnerability within the file uploading function of SUNNET CTMS. This allows an authenticated remote attacker with general user privileges to upload and execute scripts onto arbitrary directories, potentially leading to arbitrary system operations or service disruption.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.