CVE-2024-39943 | Rejetto HTTP File Server up to 0.52.9 on Linux/Unix/macOS Upload Node.js child_process Privilege Escalation

Inserito da Angelo Barbosa | Lug 5, 2024 | CVE

A vulnerability has been found in Rejetto HTTP File Server up to 0.52.9 on Linux/Unix/macOS and classified as critical. This vulnerability affects the function child_process of the file Node.js of the component Upload Handler. The manipulation leads to Privilege Escalation.

This vulnerability was named CVE-2024-39943. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39943 | Rejetto HTTP File Server up to 0.52.9 on Linux/Unix/macOS Upload Node.js child_process Privilege Escalation

Post correlati

CVE-2024-21100 | Oracle Commerce Platform 11.3.0/11.3.1/11.3.2 Remote Code Execution

CVE-2024-31143 | Xen up to 4.16.x IRQ denial of service (XSA-458)

CVE-2024-5073 | Essential Addons for Elementor Plugin up to 5.9.21 on WordPress Twitter Feed cross site scripting

CVE-2024-2941 | Campcodes Online Examination System 1.0 loginExe.php pass sql injection