CVE-2024-7961

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Pavilion8 (affected versions not specified)

Description: A path traversal vulnerability exists in the Rockwell Automation affected product. If exploited, the threat actor could upload arbitrary files to the server that could result in a remote code execution. The vulnerability is related to incorrect restriction of a directory path with limited access, which could allow a remote attacker to execute arbitrary code.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.