Security Advisory

CVE-2025-24343

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-30 11:26:51

Last updated 2025-04-30 15:07:05

Assigner bosch

State PUBLISHED

Description

A vulnerability in the “Manages app data” functionality of the web application of ctrlX OS allows a remote authenticated (low-privileged) attacker to write arbitrary files in arbitrary file system paths via a crafted HTTP request.

← Browse all CVEs View on cve.org ↗