A vulnerability marked as critical has been reported in Guangzhou Red Sea Cloud Computing Red Sea Cloud eHR up to 2024-11-03. Affected by this issue is some unknown functionality of the file PtFjk.mob. Performing a manipulation results in unrestricted upload.
This vulnerability is identified as CVE-2024-14037. The attack can be initiated remotely. There is not any exploit available.
This product operates as a managed service, which prevents users from maintaining vulnerability countermeasures themselves.