CVE-2024-56973

Publication date

2025-02-14 00:00:00

Family

mitre

State

PUBLISHED

Description

Insecure Permissions vulnerability in Alvaria, Inc Unified IP Unified Director before v.7.2SP2 allows a remote attacker to execute arbitrary code via the source and filename parameters to the ProcessUploadFromURL.jsp component.