PT-2024-29673 · Wago · Cc100 0751-9X01+10

Diego Giubertoni

Published

2024-11-18

Updated

2024-11-18

CVE-2024-41973

CVSS v3.1

8.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description A low privileged remote attacker can specify an arbitrary file on the filesystem, which may lead to arbitrary file writes with root privileges. This issue allows a remote attacker with low privileges to choose any file on the filesystem, potentially enabling them to write any file with root privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22CWE-35

Related Identifiers

CVE-2024-41973

Affected Products

Cc100 0751-9X01

Edge Controller 0752-8303/8000-0002

Pfc100 G2 0750-811X-Xxxx-Xxxx

Pfc200 G2 0750-821X/Xxx-Xxx

Pfc200 G2 750-821X-Xxx-Xxx

Tp600 0762-420X/8000-000X

Tp600 0762-430X/8000-000X

Tp600 0762-520X/8000-000X

Tp600 0762-530X/8000-000X

Tp600 0762-620X/8000-000X

Tp600 0762-630X/8000-000X

PT-2024-29673 · Wago · Cc100 0751-9X01+10

CVE-2024-41973

Weakness Enumeration

Related Identifiers

Affected Products

References · 5