CVE-2024-44761

CVSS v3.1

9.9

Critical

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions EQ Enterprise Management System versions prior to v2.0.0

Description An issue in EQ Enterprise Management System allows attackers to execute a directory traversal via crafted requests. This issue affects versions prior to v2.0.0.

Recommendations For versions prior to v2.0.0, update to version v2.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive directories to minimize the risk of exploitation.

Exploit

Fix

Path traversal

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22CWE-89

Related Identifiers

CVE-2024-44761

Affected Products

Eq Enterprise Management System

CVE-2024-44761

Weakness Enumeration

Related Identifiers

Affected Products

References · 11