IM
IronMonkey Threat Research

CVE-2024-2461 MEDIUM

Published: 2024-06-11 | Last Modified: 2026-04-15 | Status: Deferred

Description

If exploited an attacker could traverse the file system to access files or directories that would otherwise be inaccessible

Additional Descriptions (1)

Si es explotado, un atacante podría atravesar el sistema de archivos para acceder a archivos o directorios que de otro modo serían inaccesibles.

CVSS Metrics

Base Score: 6.9 (MEDIUM)

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack VectorNETWORK
Attack ComplexityLOW
Attack RequirementsNONE
Privileges RequiredHIGH
User InteractionNONE
Vulnerability ConfidentialityNONE
Vulnerability IntegrityHIGH
Vulnerability AvailabilityNONE
Subsequent ConfidentialityNONE
Subsequent IntegrityNONE
Subsequent AvailabilityNONE

Source: [email protected]

Type: Secondary

Weaknesses

Source Type Description
[email protected] Secondary
en CWE-23

References

Notification
Message here