CVE-2024-39943 | Rejetto HTTP File Server up to 0.52.9 on Linux/Unix/macOS Upload Node.js child_process Privilege Escalation

Inserito da Angelo Barbosa | Lug 5, 2024 | CVE

A vulnerability has been found in Rejetto HTTP File Server up to 0.52.9 on Linux/Unix/macOS and classified as critical. This vulnerability affects the function child_process of the file Node.js of the component Upload Handler. The manipulation leads to Privilege Escalation.

This vulnerability was named CVE-2024-39943. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39943 | Rejetto HTTP File Server up to 0.52.9 on Linux/Unix/macOS Upload Node.js child_process Privilege Escalation

Post correlati

CVE-2023-49101 | Axigen up to 10.3.3.60/10.4.23/10.5.9 WebAdmin cross site scripting

CVE-2023-50550 | layui up to 2.74 data-content cross site scripting

CVE-2023-5404 | Honeywell Experion Server heap-based overflow

CVE-2024-35180 | ome omero-web up to 5.25.0 callback unknown vulnerability (GHSA-vr85-5pwx-c6gq)