PT-2024-27931 · Alcasar · Alcasar

Published

2024-06-13

·

Updated

2024-08-02

·

CVE-2024-38295

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions ALCASAR versions prior to 3.6.1
Description The issue allows remote code execution via the still connected.php file.
Recommendations For versions prior to 3.6.1, update to version 3.6.1 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2024-38295

Affected Products

Alcasar