CVE-2024-35209

Name of the Vulnerable Software and Affected Versions: SINEC Traffic Analyzer versions prior to V1.2

Description: A vulnerability has been identified in the web server of SINEC Traffic Analyzer, which allows HTTP methods like PUT and Delete. This could allow an attacker to modify unauthorized files. The issue is related to the use of dangerous HTTP methods, potentially enabling a remote attacker to access and modify arbitrary files.

Recommendations: For versions prior to V1.2, consider restricting access to the affected web server or disabling the use of HTTP methods like PUT and Delete as a temporary workaround until a patch is available.