Security Advisory

CVE-2024-3123

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-01 02:52:34

Last updated 2024-08-01 19:32:42

Assigner twcert

State PUBLISHED

Description

CHANGING Mobile One Time Passwords uploading function in a hidden page does not filter file type properly. Remote attackers with administrator privilege can exploit this vulnerability to upload and run malicious file to execute system commands.

← Browse all CVEs View on cve.org ↗