PT-2025-3904 · Pmb · Pmb
Pau Valls Peleteiro
·
Published
2025-01-16
·
Updated
2025-01-18
·
CVE-2025-0471
CVSS v3.1
9.9
Critical
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
PMB platform versions 4.0.10 and above
Description
The issue is related to an unrestricted file upload vulnerability. This could allow an attacker to upload a file and gain remote access to the machine, enabling them to access, modify, and execute commands freely.
Recommendations
For versions 4.0.10 and above, update to a newer version that contains a fix for this issue to secure your system. As a temporary workaround, consider restricting file upload capabilities until a patch is available.
Fix
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Pmb