Security Advisory

CVE-2024-39715

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-07 16:11:22

Last updated 2024-09-09 15:15:08

Assigner hackerone

State PUBLISHED

Description

A code injection vulnerability that allows a low-privileged user with REST API access granted to remotely upload arbitrary files to the VSPC server using REST API, leading to remote code execution on VSPC server.

← Browse all CVEs View on cve.org ↗