CVE-2024-51366

Name of the Vulnerable Software and Affected Versions OmegaT version 6.0.1

Description The issue allows attackers to execute arbitrary code via uploading a crafted .conf file, exploiting an arbitrary file upload vulnerability in the component RoamingOmega.

Recommendations For OmegaT version 6.0.1, consider restricting access to the RoamingOmega component to minimize the risk of exploitation until a patch is available. Avoid uploading unverified .conf files to prevent potential code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.